[go: up one dir, main page]

CN115499214A - Access method, device and storage medium - Google Patents

Access method, device and storage medium Download PDF

Info

Publication number
CN115499214A
CN115499214A CN202211127364.7A CN202211127364A CN115499214A CN 115499214 A CN115499214 A CN 115499214A CN 202211127364 A CN202211127364 A CN 202211127364A CN 115499214 A CN115499214 A CN 115499214A
Authority
CN
China
Prior art keywords
server
target
platform
account
authentication
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN202211127364.7A
Other languages
Chinese (zh)
Inventor
高奎
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Hangzhou Hikvision System Technology Co Ltd
Original Assignee
Hangzhou Hikvision System Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Hangzhou Hikvision System Technology Co Ltd filed Critical Hangzhou Hikvision System Technology Co Ltd
Priority to CN202211127364.7A priority Critical patent/CN115499214A/en
Publication of CN115499214A publication Critical patent/CN115499214A/en
Withdrawn legal-status Critical Current

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)

Abstract

本申请公开了一种访问方法、装置及存储介质,涉及接入认证领域,用于减少网络传输过程,提升用户体验感。方法包括:第一服务器接收第一终端发送的第一访问请求;其中,第一访问请求中包含目标账户的待认证信息,用于请求访问第一服务器的目标内容;目标账户是第二平台用户的账户,第一服务器是第一平台的服务器;第一服务器包含目标插件;目标插件用于对第二平台的目标账户进行认证;当目标插件包含的认证逻辑不需要确认目标账户是否是第二平台的注册账户时,第一服务器基于目标插件对待认证信息进行认证;第一服务器在待认证信息认证通过的情况下,向第一终端发送第一响应消息;其中,第一响应消息用于指示目标内容。

Figure 202211127364

The application discloses an access method, device and storage medium, which relate to the field of access authentication and are used to reduce the network transmission process and improve user experience. The method includes: the first server receives the first access request sent by the first terminal; wherein, the first access request includes the information to be authenticated of the target account, which is used to request access to the target content of the first server; the target account is the second platform user account, the first server is the server of the first platform; the first server contains the target plug-in; the target plug-in is used to authenticate the target account of the second platform; when the authentication logic contained in the target plug-in does not need to confirm whether the target account is the second When registering an account on the platform, the first server authenticates the to-be-authenticated information based on the target plug-in; the first server sends a first response message to the first terminal when the to-be-authenticated information is authenticated; wherein, the first response message is used to indicate target content.

Figure 202211127364

Description

一种访问方法、装置及存储介质An access method, device and storage medium

技术领域technical field

本申请涉及接入认证领域,尤其涉及一种访问方法、装置及存储介质。The present application relates to the field of access authentication, in particular to an access method, device and storage medium.

背景技术Background technique

在客户端/服务器(client/server,CS)或浏览器/服务器(browser/server,BS)架构中,对账户的待认证信息进行认证是重要的环节,用于保证数据和资源只能被特定账户使用,但是当一个平台的账户需要使用另一个平台的资源时,在不同的平台之间访问是一个较为麻烦的问题。由于这些平台可能属于不同公司不同部门,平台认证逻辑存在差别,想要这些平台认证统一较为麻烦。传统方法是配置一个认证服务器,将被访问平台的待认证信息(如账户和密码)存放在认证服务器中,当一个平台的账户需要访问其他平台的资源时,需要通过认证服务器进行身份认证,该认证过程中访问平台与被访问平台都需要通过网络与认证服务器进行通讯,根据网络状况的不同,等待的时间有长有短,用户体验不友好。In the client/server (client/server, CS) or browser/server (browser/server, BS) architecture, the authentication of the account information to be authenticated is an important link to ensure that data and resources can only be accessed by specific Account usage, but when an account on one platform needs to use resources on another platform, accessing between different platforms is a troublesome issue. Since these platforms may belong to different departments of different companies, there are differences in the platform certification logic, and it is more troublesome to unify the certification of these platforms. The traditional method is to configure an authentication server, and store the information to be authenticated (such as account and password) of the accessed platform in the authentication server. When an account on a platform needs to access resources on other platforms, it needs to be authenticated through the authentication server. During the authentication process, both the accessing platform and the accessed platform need to communicate with the authentication server through the network. Depending on the network conditions, the waiting time may be long or short, and the user experience is not friendly.

发明内容Contents of the invention

本申请提供了一种访问方法、装置及存储介质,用于减少网络传输过程,提升用户体验感。The present application provides an access method, device and storage medium, which are used to reduce the network transmission process and improve user experience.

为实现上述技术目的,本申请采用如下技术方案:In order to achieve the above-mentioned technical purpose, the application adopts the following technical solutions:

第一方面,本申请实施例提供了一种访问方法,该方法包括:第一服务器接收第一终端发送的第一访问请求;其中,第一访问请求中包含目标账户的待认证信息,用于请求访问第一服务器的目标内容;目标账户是第二平台用户的账户,第一服务器是第一平台的服务器;第一服务器包含目标插件;目标插件用于对第二平台的目标账户进行认证;当目标插件包含的认证逻辑不需要确认目标账户是否是第二平台的注册账户时,第一服务器基于目标插件对待认证信息进行认证;第一服务器在待认证信息认证通过的情况下,向第一终端发送第一响应消息;其中,第一响应消息用于指示目标内容。In the first aspect, the embodiment of the present application provides an access method, the method includes: the first server receives the first access request sent by the first terminal; wherein, the first access request includes the information to be authenticated of the target account, for requesting access to the target content of the first server; the target account is an account of a user of the second platform, and the first server is a server of the first platform; the first server includes a target plug-in; the target plug-in is used to authenticate the target account of the second platform; When the authentication logic contained in the target plug-in does not need to confirm whether the target account is a registered account of the second platform, the first server authenticates the to-be-authentication information based on the target plug-in; The terminal sends a first response message; wherein, the first response message is used to indicate target content.

可以理解的是,该认证过程通过第一服务器调用目标插件完成,第一服务器可以不与第二平台的第二服务器进行通讯,减少网络传输过程,避免因网络延迟导致认证缓慢,用户体验较好。同时,认证过程与第二平台可以实现零耦合,没有相互依赖和干扰,增加系统稳定性。It can be understood that the authentication process is completed by calling the target plug-in from the first server, and the first server may not communicate with the second server on the second platform, so as to reduce the network transmission process, avoid slow authentication due to network delay, and provide a better user experience . At the same time, the authentication process and the second platform can achieve zero coupling, without interdependence and interference, and increase system stability.

上述方法以第二平台访问第一平台为例进行说明,同理,如果将第二平台的认证插件输出给第一平台,第一平台也可以实现访问第二平台。两个平台之间互相提供规范一致的插件,可以相互实现低成本访问。当有多个平台时,共同设置规范一致的插件,可以让多个平台实现低成本对接,大量削减人力成本。The above method is described by taking the second platform accessing the first platform as an example. Similarly, if the authentication plug-in of the second platform is exported to the first platform, the first platform can also access the second platform. The two platforms provide plug-ins with consistent specifications to each other, enabling low-cost access to each other. When there are multiple platforms, setting up standardized and consistent plug-ins together can allow multiple platforms to achieve low-cost docking and greatly reduce labor costs.

在一种实现方式中,当目标插件包含的认证逻辑需要确认目标账户是否是第二平台的注册账户时,上述第一服务器基于目标插件对待认证信息进行认证,包括:第一服务器向第二服务器发送请求消息,请求消息用于请求认证目标账户是否是第二平台的注册账户;第二服务器是第二平台的服务器;第一服务器接收第二响应消息;第二响应消息用于指示认证结果;当认证结果用于指示目标账户是第二平台的注册账户时,第一服务器基于第一服务器中的目标插件对待认证信息进行认证。In one implementation, when the authentication logic contained in the target plug-in needs to confirm whether the target account is a registered account of the second platform, the above-mentioned first server authenticates the authentication information based on the target plug-in, including: the first server sends the second server Sending a request message, the request message is used to request whether the authentication target account is a registered account of the second platform; the second server is a server of the second platform; the first server receives the second response message; the second response message is used to indicate the authentication result; When the authentication result indicates that the target account is a registered account of the second platform, the first server authenticates the information to be authenticated based on the target plug-in in the first server.

可以理解的是,当目标函数的认证逻辑中包含需要确认目标账户是否为第二平台的注册账户时,需要第二平台的第二服务器调用账户数据库对该注册账户进行核对。该过程表明,本申请实施例提出的方案,可以包容多种认证逻辑,实现在复杂业务平台下,满足不同的认证需求。It can be understood that when the authentication logic of the target function includes the need to confirm whether the target account is a registered account of the second platform, the second server of the second platform needs to call the account database to check the registered account. This process shows that the scheme proposed in the embodiment of the present application can contain various authentication logics, and can be implemented under a complex business platform to meet different authentication requirements.

在另一种实现方式中,第一服务器接收第一终端发送的第一访问请求,包括:第一服务器通过统一资源定位系统URL接收第一终端发送的第一访问请求。In another implementation manner, the first server receiving the first access request sent by the first terminal includes: the first server receiving the first access request sent by the first terminal through a uniform resource location system URL.

可以理解的是,第一终端通过URL向第一服务器发送访问请求,可以快速根据URL中携带的第一服务器的地址信息定位到第一服务器,提高发送效率。It can be understood that, when the first terminal sends an access request to the first server through the URL, it can quickly locate the first server according to the address information of the first server carried in the URL, thereby improving the sending efficiency.

在另一种实现方式中,在第一服务器基于目标插件对待认证信息进行认证之前,方法还包括:从多个插件中选择目标插件;目标插件是符合待认证信息认证逻辑的插件。In another implementation, before the first server authenticates the information to be authenticated based on the target plugin, the method further includes: selecting a target plugin from multiple plugins; the target plugin is a plugin that complies with the authentication logic of the information to be authenticated.

可以理解的是,第一服务器中可能有多个插件,只有与待认证信息认证逻辑一致插件才能对待认证信息进行认证。因此,为了提高认证效率、使认证结果准确,需要先从多个插件中选出目标插件,用目标插件对待认证信息进行认证。It can be understood that there may be multiple plug-ins in the first server, and only plug-ins consistent with the authentication logic of the information to be authenticated can authenticate the information to be authenticated. Therefore, in order to improve authentication efficiency and make authentication results accurate, it is necessary to first select a target plug-in from multiple plug-ins, and use the target plug-in to authenticate the authentication information.

在另一种实现方式中,在向第一终端发送第一响应消息之后,方法还包括:在预设时间内,第一服务器接收第一终端发送的第二访问请求;第二访问请求用于请求访问第一服务器的目标内容;第一服务器向第一终端发送第三响应消息;第三响应消息用于指示目标内容。In another implementation manner, after sending the first response message to the first terminal, the method further includes: within a preset time, the first server receives a second access request sent by the first terminal; the second access request is used to Access to the target content of the first server is requested; the first server sends a third response message to the first terminal; the third response message is used to indicate the target content.

可以理解的是,当第一服务器在向第一终端发送第一响应消息之后,在预设时间内,第一服务器再次接收第一终端同一个账户发送的第二访问请求时,第一服务器可以不需要再对同一个账户进行认证,该设置可以避免因重复认证造成的资源浪费,同时节约时间,提高效率。It can be understood that when the first server receives the second access request sent by the same account from the first terminal within a preset time after the first server sends the first response message to the first terminal, the first server may There is no need to authenticate the same account again. This setting can avoid resource waste caused by repeated authentication, save time and improve efficiency.

第二方面,本申请提供一种访问装置。该访问装置包括应用于第一方面或第一方面中任一种可能的设计方式的方法的各个模块。In a second aspect, the present application provides an access device. The access device includes various modules applied to the method of the first aspect or any possible design manner of the first aspect.

第三方面,本申请提供一种访问装置,包括存储器和处理器。存储器和处理器耦合;存储器用于存储计算机程序代码,计算机程序代码包括计算机指令。当处理器执行该计算机指令时,使得该访问装置执行如第一方面及其任一种可能的设计方式的音量调节方法。In a third aspect, the present application provides an access device, including a memory and a processor. A memory is coupled to the processor; the memory is used to store computer program code, which includes computer instructions. When the processor executes the computer instruction, the access device is made to execute the volume adjustment method according to the first aspect and any possible design manner thereof.

第四方面,本申请提供一种计算机可读存储介质,该计算机可读存储介质包括计算机指令。其中,当计算机指令在访问装置上运行时,使得该访问装置执行如第一方面及其任一种可能的设计方式的访问方法。In a fourth aspect, the present application provides a computer-readable storage medium, where the computer-readable storage medium includes computer instructions. Wherein, when the computer instructions run on the access device, the access device is made to execute the access method according to the first aspect and any possible design manner thereof.

第五方面,本申请提供一种计算机程序产品,该计算机程序产品包括计算机指令。其中,当计算机指令在访问装置上运行时,使得该访问装置执行如第一方面及其任一种可能的设计方式的访问方法。In a fifth aspect, the present application provides a computer program product, where the computer program product includes computer instructions. Wherein, when the computer instructions run on the access device, the access device is made to execute the access method according to the first aspect and any possible design manner thereof.

本申请中第二方面到第五方面及其各种实现方式的具体描述,可以参考第一方面及其各种实现方式中的详细描述;并且,第二方面到第五方面及其各种实现方式的有益效果,可以参考第一方面及其各种实现方式中的有益效果分析,此处不再赘述。For the specific description of the second aspect to the fifth aspect and its various implementations in this application, you can refer to the detailed description in the first aspect and its various implementations; and, the second to the fifth aspect and its various implementations For the beneficial effects of the manner, reference may be made to the first aspect and the analysis of beneficial effects in various implementation manners thereof, and details are not repeated here.

本申请的这些方面或其他方面在以下的描述中会更加简明易懂。These or other aspects of the present application will be more clearly understood in the following description.

附图说明Description of drawings

图1为平台A的第一终端的账户访问平台B的第一服务器时的访问流程图;FIG. 1 is an access flowchart when the account of the first terminal of platform A accesses the first server of platform B;

图2为本申请实施例提供的一种访问方法所涉及的实施环境示意图;FIG. 2 is a schematic diagram of an implementation environment involved in an access method provided by an embodiment of the present application;

图3为本申请实施例提供的一种访问方法的流程图;FIG. 3 is a flow chart of an access method provided by an embodiment of the present application;

图4为本申请实施例提供的一种认证步骤实施过程图;FIG. 4 is an implementation process diagram of an authentication step provided by the embodiment of the present application;

图5为本申请实施例提供的一种访问装置的结构示意图;FIG. 5 is a schematic structural diagram of an access device provided by an embodiment of the present application;

图6为本申请实施例提供的另一种访问装置的结构示意图。FIG. 6 is a schematic structural diagram of another access device provided by an embodiment of the present application.

具体实施方式detailed description

以下,术语“第一”、“第二”和“第三”等仅用于描述目的,而不能理解为指示或暗示相对重要性或者隐含指明所指示的技术特征的数量。由此,限定有“第一”、“第二”或“第三”等的特征可以明示或者隐含地包括一个或者更多个该特征。Hereinafter, the terms "first", "second" and "third" etc. are used for descriptive purposes only, and cannot be understood as indicating or implying relative importance or implicitly specifying the quantity of indicated technical features. Thus, a feature defined as "first", "second" or "third" etc. may expressly or implicitly include one or more of such features.

在CS/BS架构中,对账户的待认证信息进行认证是重要的环节,用于保证数据和资源只能被特定账户使用,但是当一个平台的账户需要使用另一个平台的资源时,传统方法是配置一个认证服务器,将被访问平台的认证信息存放在认证服务器中,当一个平台的账户需要访问其他平台时,需要通过认证服务器进行身份认证,该认证过程通过网络与认证服务器进行通讯,根据网络状况的不同,等待的时间有长有短,用户体验不友好;同时该方法需要单独配置认证服务器,安装维护较为麻烦。In the CS/BS architecture, authentication of account information to be authenticated is an important link to ensure that data and resources can only be used by specific accounts. However, when an account on one platform needs to use resources on another platform, the traditional method It is to configure an authentication server, and store the authentication information of the accessed platform in the authentication server. When an account of a platform needs to access other platforms, it needs to perform identity authentication through the authentication server. The authentication process communicates with the authentication server through the network, according to Depending on the network conditions, the waiting time may be long or short, and the user experience is not friendly; at the same time, this method requires a separate configuration of the authentication server, which is troublesome to install and maintain.

在一个示例中,如图1所示,图1为平台A的第一终端的账户访问平台B的第一服务器时的访问流程。用户通过在第一终端的账户访问第一服务器时,第一终端需要向认证服务器发送访问第一服务器的认证请求,认证服务器将第一服务器的认证密码加密后生成字符串返回给第一终端,第一终端接收到该字符串后,将该字符串和用户在第一终端的账户信息发送第一服务器,第一服务器将该字符串发送给认证服务器用于确认该字符串由认证服务器生成,确认完成后,第一服务器向第一终端返回用户需要访问的内容。该过程平台B的认证密码在认证服务器中配置好,第一终端并未直接获取密码,而是通过认证服务器对认证密码加密后获取一个字符串,平台B也是通过认证服务器验证该字符串。整个过程平台A和平台B均需要与认证服务器进行认证通讯。In an example, as shown in FIG. 1 , FIG. 1 is an access process when an account of a first terminal of platform A accesses a first server of platform B. When the user accesses the first server through the account of the first terminal, the first terminal needs to send an authentication request for accessing the first server to the authentication server, and the authentication server encrypts the authentication password of the first server to generate a character string and returns it to the first terminal. After the first terminal receives the character string, it sends the character string and the account information of the user on the first terminal to the first server, and the first server sends the character string to the authentication server to confirm that the character string is generated by the authentication server, After the confirmation is completed, the first server returns the content that the user needs to access to the first terminal. In this process, the authentication password of platform B is configured in the authentication server. The first terminal does not directly obtain the password, but obtains a character string after encrypting the authentication password through the authentication server. Platform B also verifies the character string through the authentication server. During the whole process, platform A and platform B need to communicate with the authentication server for authentication.

基于此,本申请实施例提供了一种访问方法,该方法通过第一平台的服务器调用插件对第二平台用户的账户的认证信息进行认证。第一平台的第一服务器接收到第二平台的用户通过第二平台中的第一终端发送来的第一访问请求后,调用插件对该访问请求中包含的第二平台用户的账户的待认证信息进行认证,当认证通过后,第一平台的第一服务器将第一访问请求访问的内容返回至第二平台的第一终端上。可以理解的是,该认证过程通过第一服务器调用插件完成,第一服务器可以不与第二平台的第二服务器进行通讯,减少网络传输过程,避免因网络延迟导致认证缓慢,用户体验较好。同时,认证过程与第二平台可以实现零耦合,没有相互依赖和干扰,增加系统稳定性。Based on this, an embodiment of the present application provides an access method, in which the server of the first platform invokes a plug-in to authenticate the authentication information of the user's account of the second platform. After the first server of the first platform receives the first access request sent by the user of the second platform through the first terminal in the second platform, it calls the plug-in to verify the account of the second platform user included in the access request. The information is authenticated, and when the authentication is passed, the first server of the first platform returns the content accessed by the first access request to the first terminal of the second platform. It can be understood that the authentication process is completed by the first server calling the plug-in, and the first server may not communicate with the second server of the second platform, so as to reduce the network transmission process, avoid slow authentication caused by network delay, and provide better user experience. At the same time, the authentication process and the second platform can achieve zero coupling, without interdependence and interference, and increase system stability.

下面将结合附图对本申请实施例的实施方式进行详细描述。The implementation of the embodiment of the present application will be described in detail below with reference to the accompanying drawings.

请参考图2,图2为本申请实施例提供的一种访问方法所涉及的实施环境示意图,该实施环境包括:第一平台130和第二平台140,其中,第一平台130至少包括一个第一服务器100;第二平台140包括至少一个第一终端110,可选的,还包括第二服务器120;Please refer to FIG. 2. FIG. 2 is a schematic diagram of an implementation environment involved in an access method provided by an embodiment of the present application. The implementation environment includes: a first platform 130 and a second platform 140, wherein the first platform 130 includes at least one A server 100; the second platform 140 includes at least one first terminal 110, and optionally, also includes a second server 120;

其中,第一终端110为第二平台140的一个终端,第一服务器100为第一平台130的一个服务器,第二服务器120为第二平台140的一个服务器。第二平台140与第一平台130是用于处理不同业务的平台,可以属于不同公司,也可以属于同一个公司不同部门。Wherein, the first terminal 110 is a terminal of the second platform 140 , the first server 100 is a server of the first platform 130 , and the second server 120 is a server of the second platform 140 . The second platform 140 and the first platform 130 are platforms for processing different businesses, and may belong to different companies, or may belong to different departments of the same company.

第一平台130或第二平台140可以包含多个终端和多个服务器,本方案以第一平台130包括第一服务器100,第二平台140包括第一终端110和第二服务器120,为例说明。The first platform 130 or the second platform 140 may include multiple terminals and multiple servers. In this solution, the first platform 130 includes the first server 100, and the second platform 140 includes the first terminal 110 and the second server 120. .

第一终端110是用于用户在第二平台140处理业务的设备,第一服务器100是用于对访问第一平台130的账户进行认证的设备,可选的,第二服务器120是对第二平台140的账户进行认证的设备。The first terminal 110 is a device for users to process business on the second platform 140, the first server 100 is a device for authenticating the account for accessing the first platform 130, and optionally, the second server 120 is for the second A device for authenticating the account of the platform 140 .

第一终端110可以是手机、平板电脑、桌面型、膝上型、笔记本电脑、上网本等,本申请实施例对该终端的具体形态不作特殊限制。The first terminal 110 may be a mobile phone, a tablet computer, a desktop, a laptop, a notebook computer, a netbook, etc. The embodiment of the present application does not specifically limit the specific form of the terminal.

在一个应用场景中,在一个公司中有两个部门财务部门和审计部门,财务部门的财务系统为第一平台130,审计部门的审计系统为第二平台140。工作人员在第二平台140的第一终端110上登录账户,当工作人员需要使用财务部门的第一平台130中的财务结算资料时,工作人员在第一终端110上点击第一平台130的访问链接,第一平台130的第一服务器100接收到该访问申请后,调用满足第二平台140认证逻辑的认证插件中的认证方法,对该访问申请中包含的账户待认证信息进行认证,认证通过后,第一服务器100将财务结算资料发送到第一终端110。In an application scenario, there are two departments in a company, a financial department and an auditing department. The financial system of the financial department is the first platform 130 , and the auditing system of the auditing department is the second platform 140 . The staff member logs into the account on the first terminal 110 of the second platform 140, and when the staff member needs to use the financial settlement data in the first platform 130 of the financial department, the staff member clicks on the first terminal 110 to access the first platform 130 After receiving the access application, the first server 100 of the first platform 130 calls the authentication method in the authentication plug-in that satisfies the authentication logic of the second platform 140, and authenticates the account information to be authenticated contained in the access application, and the authentication passes Afterwards, the first server 100 sends the financial settlement data to the first terminal 110 .

在另一个应用场景中,上述场景中,当第一平台130的第一服务器100接收到第二平台140的第一终端110发送的访问申请后,需要确认该工作人员在第二平台140登录的账户是否是审计部门的员工的账户,此时,第一服务器100将该账户认证信息发送至第二平台140第二服务器120,第二服务器120对该工作人员的登录的账户与账户数据库中保存的审计部门员工账户信息进行对比,确认该工作人员的账户为审计部门员工账户后,将确认信息返回给第一服务器100,第一服务器100对该账户待认证信息进行认证。In another application scenario, in the above scenario, after the first server 100 of the first platform 130 receives the access application sent by the first terminal 110 of the second platform 140, it needs to confirm that the staff member logged in on the second platform 140 Whether the account is an account of an employee of the audit department, at this time, the first server 100 sends the account authentication information to the second platform 140 and the second server 120, and the second server 120 saves the logged-in account of the employee and the account database After comparing the employee account information of the audit department, after confirming that the employee's account is an employee account of the audit department, the confirmation information is returned to the first server 100, and the first server 100 authenticates the information to be authenticated of the account.

下文对本申请实施例提供的访问方法进行说明:The following describes the access method provided by the embodiment of this application:

本申请实施例提供的访问方法可以应用于第一服务器100。本申请实施例提供的访问方法的执行主体还可以为访问装置。该访问装置可以为第一服务器,或者为该第一服务器安装的提供访问功能的应用程序(application,APP),又或者为该第一服务器中的中央处理器(central processing unit,CPU),又或者为该第一服务器中的用于执行访问方法的控制模块。下文中均以本申请实施例提供的方法是第一服务器为例进行说明。The access method provided in the embodiment of the present application may be applied to the first server 100 . The execution subject of the access method provided in the embodiment of the present application may also be an access device. The access device may be a first server, or an application program (application, APP) installed on the first server to provide an access function, or a central processing unit (central processing unit, CPU) in the first server, or Or it is a control module in the first server for executing the access method. In the following, description will be made by taking the method provided by the embodiment of the present application as the first server as an example.

请参考图3,为本申请实施例提供的一种访问方法的流程图。如图3所示,该方法可以包括S101-S106。Please refer to FIG. 3 , which is a flow chart of an access method provided by an embodiment of the present application. As shown in Fig. 3, the method may include S101-S106.

S101:第一终端向第二服务器发送目标账户登录请求。S101: The first terminal sends a target account login request to the second server.

第一终端是第二平台的终端,第二服务器是第二平台的服务器,目标账户是第二平台用户的账户。The first terminal is a terminal of the second platform, the second server is a server of the second platform, and the target account is an account of a user of the second platform.

目标账户相关信息保存在第二服务器数据库中。The information related to the target account is stored in the second server database.

S102:第二服务器接收到目标账户登录请求,并向第一终端返回目标账户登录界面。登录界面中包含第一平台访问入口。S102: The second server receives the target account login request, and returns a target account login interface to the first terminal. The login interface includes the first platform access entry.

第二平台的用户可以使用目标账户通过第一平台的访问入口对第一平台进行访问。The user of the second platform can use the target account to access the first platform through the access portal of the first platform.

第一平台访问入口可以包括统一资源定位系统URL跳转链接。The first platform access entry may include a uniform resource location system URL jump link.

S103:第一服务器接收第一终端发送的第一访问请求。其中,第一访问请求中包含目标账户的待认证信息,用于请求访问第一服务器的目标内容;第一服务器是第一平台的服务器,第二平台与第一平台不同。S103: The first server receives the first access request sent by the first terminal. Wherein, the first access request includes the information to be authenticated of the target account, and is used to request access to the target content of the first server; the first server is a server of the first platform, and the second platform is different from the first platform.

具体的:第一服务器通过统一资源定位系统URL接收第一终端发送的第一访问请求。Specifically: the first server receives the first access request sent by the first terminal through the URL of the uniform resource location system.

目标账户:是第二平台用户的账户,当用户通过第二平台进行业务处理时,需要根据第二平台要求登录个人账户,此时,目标账户为用户在第二平台登录的账户。Target account: It is the account of the user of the second platform. When the user conducts business processing through the second platform, he needs to log in to his personal account according to the requirements of the second platform. At this time, the target account is the account logged in by the user on the second platform.

待认证信息:可以包含目标账户的账户名、账户登录密码、用户角色(例如:普通用户或高级用户)和平台名称(例如:第二平台)等。Information to be authenticated: may include the account name of the target account, account login password, user role (for example: ordinary user or advanced user), and platform name (for example: second platform), etc.

目标内容:用户在第一终端上请求访问的内容(例如:主页或共享文件夹)。Target content: the content requested by the user on the first terminal (for example: homepage or shared folder).

平台:是一个虚拟平台,通过物理链路将各个孤立的终端或服务器相连在一起,组成数据链路,从而达到资源共享和通信的目的。不同的平台有不同的功能和特性。在一个示例中,对于公司来说,平台可以是一个业务平台,用于处理公司业务;或者,平台可以是一个资源共享平台,用于存放公司各个部门资料。在另一个示例中,对于网络来说,平台可以是以网络为载体进行交流或者资源共享的软件,例如:微博、QQ或Email等。Platform: It is a virtual platform that connects isolated terminals or servers together through physical links to form a data link, so as to achieve the purpose of resource sharing and communication. Different platforms have different capabilities and features. In an example, for a company, the platform may be a business platform for processing company business; or, the platform may be a resource sharing platform for storing information of various departments of the company. In another example, for the network, the platform may use the network as a carrier for communication or resource sharing software, such as Weibo, QQ or Email.

第二平台与第一平台可以是同一个公司的不同部门的不同平台,也可以是不同公司的不同平台,第二平台的用户想要访问第一平台的资源时,通过点击第一终端上第一平台的访问入口的URL跳转链接,此时第一终端向第一平台的第一服务器发送第一访问请求,请求用于访问第一平台。该第一访问请求中包含了用户账户信息以及想要访问的内容信息。The second platform and the first platform can be different platforms of different departments of the same company, or different platforms of different companies. When users of the second platform want to access the resources of the first platform, they can click the The URL jump link of the access portal of a platform, at this time, the first terminal sends a first access request to the first server of the first platform, and the request is used to access the first platform. The first access request includes user account information and desired content information.

S104:第一服务器从多个插件中选择目标插件;目标插件是符合待认证信息的认证逻辑的插件。目标插件用于对第二平台的目标账户的待认证信息进行认证。S104: The first server selects a target plug-in from multiple plug-ins; the target plug-in is a plug-in conforming to authentication logic of the information to be authenticated. The target plug-in is used to authenticate the information to be authenticated of the target account of the second platform.

认证逻辑:是一种可以自定义的对待认证信息进行认证的一种逻辑。例如:认证逻辑可以自定义为,对目标账户的账户名、账户登录密码、用户角色(例如:普通用户或高级用户)和平台名称(例如:第二平台)等依次进行认证的一种逻辑,其中不同的用户角色可以拥有不同的访问权限;或者可以自定义为,对目标账户的账户名、账户登录密码、用户角色(例如:普通用户或高级用户)和平台名称(例如:第二平台)等其中的部分内容进行认证的一种逻辑。一般的,目标账户的账户名和账户登录密码为必选认证内容,其他为根据认证逻辑选择性认证的内容。Authentication logic: It is a logic that can be customized to authenticate the information to be authenticated. For example: the authentication logic can be customized as a logic that sequentially authenticates the target account's account name, account login password, user role (for example: common user or advanced user) and platform name (for example: second platform), Different user roles can have different access rights; or can be customized as the account name, account login password, user role (for example: ordinary user or advanced user) and platform name (for example: second platform) of the target account A logic that waits for part of the content to be authenticated. Generally, the account name and account login password of the target account are mandatory authentication contents, and others are optional authentication contents according to the authentication logic.

每个平台可以包含一种或多种认证逻辑,在一个示例中,对待认证信息中的不同用户角色,可以设置不同的认证逻辑,例如,对普通用户设置的认证逻辑中包含的访问权限为普通权限,对高级用户设置的认证逻辑中包含的访问权限为高级权限,具体可以根据平台需求进行开发。Each platform can contain one or more authentication logics. In one example, different authentication logics can be set for different user roles in the authentication information. For example, the access rights contained in the authentication logic set for ordinary users are ordinary Permissions, the access permissions contained in the authentication logic set for advanced users are advanced permissions, which can be developed according to platform requirements.

插件:一种根据认证逻辑开发的可以在软件中运行的小程序。Plug-in: A small program that can be run in the software developed according to the authentication logic.

多个插件:根据多个认证逻辑开发的多个插件;第一平台中的多个插件中可以包含符合第二平台认证逻辑的插件和符合第一平台认证逻辑的插件。多个插件打包在一个文件中,提前在第一服务器中安装好。Multiple plug-ins: multiple plug-ins developed according to multiple authentication logics; the multiple plug-ins in the first platform may include plug-ins conforming to the authentication logic of the second platform and plug-ins conforming to the authentication logic of the first platform. Multiple plug-ins are packaged in one file and installed on the first server in advance.

目标插件:是多个插件中与待认证信息认证逻辑一致的插件。例如:第一服务器中内置多个插件分别为插件1-插件5,其中插件1是符合第二平台普通用户认证逻辑的插件,插件2是符合第二平台高级用户认证逻辑的插件,插件3-插件5是符合第一平台认证逻辑的插件。当待认证信息中包含的用户角色为普通用户时,此时,插件1为目标插件。Target plug-in: among multiple plug-ins, the plug-in is consistent with the authentication logic of the information to be authenticated. For example: the multiple plug-ins built in the first server are respectively plug-in 1-plug-in 5, where plug-in 1 is a plug-in that conforms to the authentication logic of ordinary users of the second platform, plug-in 2 is a plug-in that complies with the authentication logic of advanced users of the second platform, and plug-in 3- Plug-in 5 is a plug-in conforming to the authentication logic of the first platform. When the user role contained in the information to be authenticated is an ordinary user, at this time, plug-in 1 is the target plug-in.

当第一服务器接收到第一终端发送来的第一访问请求时,第一服务器依次调用插件,当调用的插件符合待认证信息的认证逻辑时,即为目标插件,否则,继续调用下一个插件,直到选出目标插件。When the first server receives the first access request sent by the first terminal, the first server calls the plug-in in turn. When the called plug-in meets the authentication logic of the information to be authenticated, it is the target plug-in; otherwise, continue to call the next plug-in until the target plugin is selected.

S105:第一服务器基于目标插件对待认证信息进行认证。S105: The first server authenticates the to-be-authentication information based on the target plug-in.

具体的,当目标插件包含的认证逻辑需要确认目标账户是否为注册账户时,S103可以包括以下方案1或方案2:Specifically, when the authentication logic contained in the target plug-in needs to confirm whether the target account is a registered account, S103 may include the following option 1 or option 2:

其中,注册账户即为账户信息保存在第二服务器的数据库中的账户,即目标插件包含的认证逻辑需要确认目标账户信息是否保存在第二服务器的数据库中。Wherein, the registered account is an account whose account information is stored in the database of the second server, that is, the authentication logic contained in the target plug-in needs to confirm whether the target account information is stored in the database of the second server.

方案1:当目标插件包含的认证逻辑不需要确认目标账户是否为注册账户时,此时,第一服务器基于目标插件对目标账户的待认证信息进行认证。Solution 1: When the authentication logic contained in the target plug-in does not need to confirm whether the target account is a registered account, at this time, the first server authenticates the information to be authenticated of the target account based on the target plug-in.

在一个示例中,目标插件的认证逻辑为,对待认证信息中包含的如目标账户的账户名、账户登录密码、用户角色(例如:普通用户或高级用户)和平台名称(例如:第二平台)等依次进行认证,此时目标插件中的函数依次对上述信息进行认证,每一个信息通过认证时,则目标账户通过认证;其中一个信息没有通过认证时,则目标账户没有通过认证。In one example, the authentication logic of the target plug-in is, for example, the account name of the target account, account login password, user role (for example: ordinary user or advanced user) and platform name (for example: second platform) contained in the information to be authenticated At this time, the function in the target plug-in authenticates the above information in turn. When each information is authenticated, the target account is authenticated; when one of the information is not authenticated, the target account is not authenticated.

方案2:当目标插件包含的认证逻辑需要确认目标账户是否为注册账户时,此时,认证步骤如下:(如图4所示,图4步骤1-步骤3的实施过程)Solution 2: When the authentication logic contained in the target plug-in needs to confirm whether the target account is a registered account, at this time, the authentication steps are as follows: (As shown in Figure 4, the implementation process of Step 1-Step 3 in Figure 4)

步骤1.第一服务器向第二服务器发送请求消息,请求消息用于请求认证目标账户是否是第二平台的注册账户;第二服务器是第二平台的服务器。Step 1. The first server sends a request message to the second server, and the request message is used to request whether the authentication target account is a registered account of the second platform; the second server is a server of the second platform.

第二服务器接收到请求消息后,调用数据库核对目标账户是否是数据库中保存的注册账户,核对完成后,向第一服务器发送认证结果。After receiving the request message, the second server calls the database to check whether the target account is a registered account stored in the database, and after the check is completed, sends the authentication result to the first server.

步骤2.第一服务器接收第二响应消息;第二响应消息用于指示认证结果。Step 2. The first server receives the second response message; the second response message is used to indicate the authentication result.

认证结果包含:目标账户是注册账户或目标账户不是注册账户。The authentication result includes: the target account is a registered account or the target account is not a registered account.

步骤3.当认证结果用于指示目标账户是第二平台的注册账户时,第一服务器基于第一服务器中的目标插件对待认证信息进行认证;当认证结果用于指示目标账户不是第二平台的注册账户时,第一服务器对待认证信息不进行认证。Step 3. When the authentication result is used to indicate that the target account is a registered account of the second platform, the first server authenticates the authentication information based on the target plug-in in the first server; when the authentication result is used to indicate that the target account is not a registered account of the second platform When registering an account, the first server does not perform authentication on the information to be authenticated.

S106:第一服务器在待认证信息认证通过的情况下,向第一终端发送第一响应消息;其中,第一响应消息用于指示目标内容。S106: The first server sends a first response message to the first terminal when the authentication information to be authenticated is passed; wherein, the first response message is used to indicate target content.

当目标账户的待认证信息通过目标函数的认证后,第一服务器向第一终端发送第一访问请求中请求访问的目标内容。After the information to be authenticated of the target account passes the authentication of the target function, the first server sends the target content requested to be accessed in the first access request to the first terminal.

当待认证信息认证不通过或者第一服务器对待认证信息不进行认证时,第一服务器不返回目标内容,第一终端显示跳转失败。When the authentication of the information to be authenticated fails or the first server does not authenticate the information to be authenticated, the first server does not return the target content, and the first terminal displays a jump failure.

可选的,第一服务器在向第一终端发送第一响应消息之后,在预设时间内,第一服务器接收第一终端发送的第二访问请求;第二访问请求用于请求访问第一服务器的目标内容;第一服务器向第一终端发送第三响应消息;第三响应消息用于指示目标内容。Optionally, after the first server sends the first response message to the first terminal, within a preset time, the first server receives the second access request sent by the first terminal; the second access request is used to request access to the first server the target content; the first server sends a third response message to the first terminal; the third response message is used to indicate the target content.

可以理解的是,当第一服务器在向第一终端发送第一响应消息之后,在预设时间内,第一服务器再次接收第一终端同一个账户发送的第二访问请求时,第一服务器可以不需要再对同一个账户进行认证,该设置可以避免因重复认证造成的资源浪费,同时节约时间,提高效率。It can be understood that when the first server receives the second access request sent by the same account from the first terminal within a preset time after the first server sends the first response message to the first terminal, the first server may There is no need to authenticate the same account again. This setting can avoid resource waste caused by repeated authentication, save time and improve efficiency.

本申请实施例提供的一种访问方法,该方法通过第一平台的服务器调用插件对第二平台用户的账户的认证信息进行认证。第一平台的第一服务器接收到第二平台的用户通过第二平台中的第一终端发送来的第一访问请求后,调用插件对该访问请求中包含的第二平台用户的账户的待认证信息进行认证,当认证通过后,第一平台的第一服务器将第一访问请求访问的内容返回至第二平台的第一终端上。可以理解的是,该认证过程通过第一服务器调用插件完成,第一服务器可以不与第二平台的第二服务器进行通讯,减少网络传输过程,避免因网络延迟导致认证缓慢,用户体验较好。同时,认证过程与第二平台可以实现零耦合,没有相互依赖和干扰,增加系统稳定性。An access method provided in an embodiment of the present application, in which the server of the first platform invokes a plug-in to authenticate the authentication information of the user's account of the second platform. After the first server of the first platform receives the first access request sent by the user of the second platform through the first terminal in the second platform, it calls the plug-in to verify the account of the second platform user included in the access request. The information is authenticated, and when the authentication is passed, the first server of the first platform returns the content accessed by the first access request to the first terminal of the second platform. It can be understood that the authentication process is completed by the first server calling the plug-in, and the first server may not communicate with the second server of the second platform, so as to reduce the network transmission process, avoid slow authentication caused by network delay, and provide better user experience. At the same time, the authentication process and the second platform can achieve zero coupling, without interdependence and interference, and increase system stability.

本申请实施例提供的方法以第二平台访问第一平台为例进行说明,当有第三平台、第四平台以及更多平台,且多个平台之间的用户可以共享平台资源时,可以定义一个共享插件文件,将各自平台的认证逻辑开发出认证插件保存到共享插件文件中,在多个平台服务器中安装该共享插件文件,即可达到多平台资源共享的目的。多平台资源共享,使得多平台实现低成本对接,当多个平台共享插件文件的规范一致时,可实现几乎零成本对接,大量结余人力成本。The method provided by the embodiment of this application is described by taking the second platform to access the first platform as an example. When there are third platform, fourth platform and more platforms, and users among multiple platforms can share platform resources, you can define A shared plug-in file, the authentication plug-in developed by the authentication logic of each platform is saved in the shared plug-in file, and the shared plug-in file is installed in multiple platform servers to achieve the purpose of multi-platform resource sharing. Multi-platform resource sharing enables multi-platforms to achieve low-cost docking. When multiple platforms share the same plug-in file specifications, almost zero-cost docking can be achieved, and a large amount of labor costs will be saved.

上述主要从方法的角度对本申请实施例提供的方案进行了介绍。为了实现上述功能,其包含了执行各个功能相应的硬件结构和/或软件模块。本领域技术目标应该很容易意识到,结合本文中所公开的实施例描述的各示例的单元及算法步骤,本申请能够以硬件或硬件和计算机软件的结合形式来实现。某个功能究竟以硬件还是计算机软件驱动硬件的方式来执行,取决于技术方案的特定应用和设计约束条件。专业技术目标可以对每个特定的应用来使用不同方法来实现所描述的功能,但是这种实现不应认为超出本申请的范围。The foregoing mainly introduces the solutions provided by the embodiments of the present application from the perspective of methods. In order to realize the above functions, it includes corresponding hardware structures and/or software modules for performing various functions. It should be easy for those skilled in the art to realize that the present application can be implemented in the form of hardware or a combination of hardware and computer software in combination with the units and algorithm steps of each example described in the embodiments disclosed herein. Whether a certain function is executed by hardware or computer software drives hardware depends on the specific application and design constraints of the technical solution. Expert technical targets may use different methods to implement the described functions for each particular application, but such implementation should not be regarded as exceeding the scope of the present application.

本申请实施例还提供访问装置200。如图5所示,为本申请实施例提供的一种访问装置200的结构示意图。The embodiment of the present application also provides an access device 200 . As shown in FIG. 5 , it is a schematic structural diagram of an access device 200 provided in the embodiment of the present application.

其中,访问装置200包括:接收模块210,用于第一服务器接收第一终端发送的第一访问请求;其中,第一访问请求中包含目标账户的待认证信息,用于请求访问第一服务器的目标内容;目标账户是第二平台用户的账户,第一服务器是第一平台的服务器;第一服务器包含目标插件;目标插件用于对第二平台的目标账户进行认证;认证模块220,用于当目标插件包含的认证逻辑不需要确认目标账户是否是第二平台的注册账户时,第一服务器基于目标插件对待认证信息进行认证;发送模块230,用于第一服务器在待认证信息认证通过的情况下,向第一终端发送第一响应消息;其中,第一响应消息用于指示目标内容。Wherein, the access device 200 includes: a receiving module 210, configured for the first server to receive the first access request sent by the first terminal; wherein, the first access request includes the information to be authenticated of the target account, and is used for requesting access to the first server. Target content; the target account is the account of the second platform user, and the first server is the server of the first platform; the first server contains the target plug-in; the target plug-in is used to authenticate the target account of the second platform; the authentication module 220 is used to When the authentication logic contained in the target plug-in does not need to confirm whether the target account is a registered account of the second platform, the first server authenticates the information to be authenticated based on the target plug-in; the sending module 230 is used for the first server to pass the authentication of the information to be authenticated In this case, a first response message is sent to the first terminal; wherein, the first response message is used to indicate the target content.

在一种可能的实施例中,发送模块230还用于,当目标插件包含的认证逻辑需要确认目标账户是否是第二平台的注册账户时,第一服务器向第二服务器发送请求消息,请求消息用于请求认证目标账户是否是第二平台的注册账户;第二服务器是第二平台的服务器;接收模块210还用于,第一服务器接收第二响应消息;第二响应消息用于指示认证结果;当认证结果用于指示目标账户是第二平台的注册账户时,认证模块220具体用于,第一服务器基于目标插件对待认证信息进行认证。In a possible embodiment, the sending module 230 is also used to: when the authentication logic included in the target plug-in needs to confirm whether the target account is a registered account of the second platform, the first server sends a request message to the second server, and the request message Used to request whether the authentication target account is a registered account of the second platform; the second server is a server of the second platform; the receiving module 210 is also used for the first server to receive the second response message; the second response message is used to indicate the authentication result ; When the authentication result is used to indicate that the target account is a registered account of the second platform, the authentication module 220 is specifically configured to authenticate the information to be authenticated by the first server based on the target plug-in.

在一种可能的实施例中,接收模块230具体用于,第一服务器通过统一资源定位系统URL接收第一终端发送的第一访问请求。In a possible embodiment, the receiving module 230 is specifically configured to: the first server receives the first access request sent by the first terminal through a uniform resource location system URL.

在一种可能的实施例中,访问装置200还包括:选择模块240;在第一服务器基于目标插件对待认证信息进行认证之前,选择模块240用于,从多个插件中选择目标插件;目标插件是符合待认证信息认证逻辑的插件。In a possible embodiment, the access device 200 further includes: a selection module 240; before the first server authenticates the authentication information based on the target plugin, the selection module 240 is configured to select a target plugin from multiple plugins; the target plugin It is a plug-in that conforms to the authentication logic of the information to be authenticated.

在一种可能的实施例中,在向第一终端发送第一响应消息之后,接收模块230还用于,在预设时间内,第一服务器接收第一终端发送的第二访问请求;第二访问请求用于请求访问第一服务器的目标内容。发送模块230还用于,第一服务器向第一终端发送第三响应消息;第三响应消息用于指示目标内容。In a possible embodiment, after sending the first response message to the first terminal, the receiving module 230 is further configured to, within a preset time, the first server receive the second access request sent by the first terminal; The access request is used to request access to the target content of the first server. The sending module 230 is further configured to: the first server sends a third response message to the first terminal; the third response message is used to indicate the target content.

当然,本申请实施例提供的访问装置200、接收模块210、认证模块220和发送模块230包括但不限于上述模块。Certainly, the access device 200 , the receiving module 210 , the authentication module 220 and the sending module 230 provided in this embodiment of the application include but are not limited to the above modules.

图6是本申请实施例提供的另一种访问装置300的结构示意图。如图6所示,该访问装置300包括处理器301、存储器302和网络接口303。FIG. 6 is a schematic structural diagram of another access device 300 provided by an embodiment of the present application. As shown in FIG. 6 , the access device 300 includes a processor 301 , a memory 302 and a network interface 303 .

其中,处理器301包括一个或多个CPU。该CPU可以为单核CPU(single-CPU)或多核CPU(multi-CPU)。Wherein, the processor 301 includes one or more CPUs. The CPU may be a single-core CPU (single-CPU) or a multi-core CPU (multi-CPU).

存储器302包括但不限于是RAM、ROM、EPROM、快闪存储器、或光存储器等。The memory 302 includes, but is not limited to, RAM, ROM, EPROM, flash memory, or optical memory.

可选地,处理器301通过读取存储器302中保存的指令实现本申请实施例提供的访问方法,或者,处理器301通过内部存储的指令实现本申请实施例提供的访问方法。在处理器301通过读取存储器302中保存的指令实现上述实施例中的方法的情况下,存储器302中保存实现本申请实施例提供的访问方法的指令。Optionally, the processor 301 implements the access method provided by the embodiment of the present application by reading the instruction stored in the memory 302, or, the processor 301 implements the access method provided by the embodiment of the present application by using the instruction stored internally. In the case that the processor 301 implements the method in the foregoing embodiment by reading the instruction stored in the memory 302, the memory 302 stores an instruction for implementing the access method provided in the embodiment of the present application.

网络接口303是有线接口(端口),例如FDDI、GE接口。或者,网络接口303是无线接口。应理解,网络接口303包括多个物理端口,网络接口303用于接入网络。可选地,访问装置还包括总线304,上述处理器301、存储器302、网络接口303通常通过总线304相互连接,或采用其他方式相互连接。The network interface 303 is a wired interface (port), such as FDDI, GE interface. Alternatively, network interface 303 is a wireless interface. It should be understood that the network interface 303 includes multiple physical ports, and the network interface 303 is used to access a network. Optionally, the access device further includes a bus 304, and the processor 301, the memory 302, and the network interface 303 are generally connected to each other through the bus 304, or are connected to each other in other ways.

在实际实现时,访问装置200的接收模块210、认证模块220、发送模块230和选择模块240,可以由处理器调用存储器中的计算机程序代码来实现。其具体的执行过程可参考上述方法部分的描述,这里不再赘述。In actual implementation, the receiving module 210 , the authentication module 220 , the sending module 230 and the selection module 240 of the access device 200 can be realized by calling the computer program code in the memory by the processor. For the specific execution process, reference may be made to the description of the above-mentioned method part, which will not be repeated here.

本申请另一实施例还提供一种访问装置,包括存储器和处理器。存储器和处理器耦合;存储器用于存储计算机程序代码,计算机程序代码包括计算机指令。其中,当处理器执行该计算机指令时,使得该访问装置执行上述方法实施例所示的方法的各个步骤。Another embodiment of the present application also provides an access device, including a memory and a processor. A memory is coupled to the processor; the memory is used to store computer program code, which includes computer instructions. Wherein, when the processor executes the computer instruction, the access device is made to execute each step of the method shown in the above method embodiment.

本申请另一实施例还提供一种计算机可读存储介质,该计算机可读存储介质中存储有计算机指令,当计算机指令在访问装置上运行时,使得访问装置执行上述方法实施例所示的方法流程中访问装置执行的各个步骤。Another embodiment of the present application also provides a computer-readable storage medium, where computer instructions are stored in the computer-readable storage medium, and when the computer instructions are run on the access device, the access device executes the methods shown in the above method embodiments Access the individual steps performed by the device in the process.

本申请另一实施例还提供一种芯片系统,该芯片系统应用于访问装置。该芯片系统包括一个或多个接口电路,以及一个或多个处理器。接口电路和处理器通过线路互联。接口电路用于从访问装置的存储器接收信号,并向处理器发送信号,信号包括存储器中存储的计算机指令。当访问装置处理器执行计算机指令时,访问装置执行上述方法实施例所示的方法流程中访问装置执行的各个步骤。Another embodiment of the present application further provides a chip system, which is applied to an access device. The chip system includes one or more interface circuits, and one or more processors. The interface circuit and the processor are interconnected by wires. The interface circuit is for receiving signals from the memory of the access device and sending signals to the processor, the signals comprising computer instructions stored in the memory. When the processor of the access device executes the computer instructions, the access device executes various steps performed by the access device in the method flow shown in the above method embodiments.

在本申请另一实施例中还提供一种计算机程序产品,该计算机程序产品包括计算机指令,当计算机指令在访问装置上运行时,使得访问装置执行上述方法实施例所示的方法流程中访问装置执行的各个步骤。In another embodiment of the present application, a computer program product is also provided. The computer program product includes computer instructions. When the computer instructions are run on the access device, the access device executes the access device in the method flow shown in the above method embodiment. steps performed.

在上述实施例中,可以全部或部分地通过软件、硬件、固件或者其任意组合来实现。当使用软件程序实现时,可以全部或部分地以计算机程序产品的形式来实现。该计算机程序产品包括一个或多个计算机指令。在计算机上加载和执行计算机执行指令时,全部或部分地产生按照本申请实施例的流程或功能。计算机可以是通用计算机、专用计算机、计算机网络、或者其他可编程装置。计算机指令可以存储在计算机可读存储介质中,或者从一个计算机可读存储介质向另一个计算机可读存储介质传输,例如,计算机指令可以从一个网站站点、计算机、服务器或者数据中心通过有线(例如同轴电缆、光纤、数字用户线(digitalsubscriber line,DSL))或无线(例如红外、无线、微波等)方式向另一个网站站点、计算机、服务器或数据中心进行传输。计算机可读存储介质可以是计算机能够存取的任何可用介质或者是包含一个或多个可以用介质集成的服务器、数据中心等数据存储设备。可用介质可以是磁性介质(例如,软盘、硬盘、磁带),光介质(例如,DVD)、或者半导体介质(例如固态硬盘(solid state disk,SSD))等。In the above embodiments, all or part of them may be implemented by software, hardware, firmware or any combination thereof. When implemented using a software program, it may be implemented in whole or in part in the form of a computer program product. The computer program product includes one or more computer instructions. When computer-executed instructions are loaded and executed on a computer, the processes or functions according to the embodiments of the present application are generated in whole or in part. A computer can be a general purpose computer, special purpose computer, computer network, or other programmable device. Computer instructions may be stored in or transmitted from one computer-readable storage medium to another computer-readable storage medium, e.g. Coaxial cable, optical fiber, digital subscriber line (digital subscriber line, DSL)) or wireless (such as infrared, wireless, microwave, etc.) transmission to another website site, computer, server or data center. The computer-readable storage medium may be any available medium that can be accessed by a computer or may contain one or more data storage devices such as servers and data centers that can be integrated with the medium. The available media may be magnetic media (eg, floppy disk, hard disk, magnetic tape), optical media (eg, DVD), or semiconductor media (eg, solid state disk (solid state disk, SSD)) and the like.

以上所述,仅为本申请的具体实施方式。熟悉本技术领域的技术人员根据本申请提供的具体实施方式,可想到变化或替换,都应涵盖在本申请的保护范围之内。The foregoing is only a specific implementation manner of the present application. Those skilled in the art may conceive of changes or substitutions based on the specific implementation methods provided in this application, and all of them shall fall within the protection scope of this application.

Claims (9)

1.一种访问方法,其特征在于,包括:1. An access method, characterized in that, comprising: 第一服务器接收第一终端发送的第一访问请求;其中,所述第一访问请求中包含目标账户的待认证信息,用于请求访问所述第一服务器的目标内容;所述目标账户是第二平台用户的账户,所述第一服务器是第一平台的服务器;所述第一服务器包含目标插件;所述目标插件用于对所述第二平台的目标账户进行认证;The first server receives the first access request sent by the first terminal; wherein, the first access request includes the information to be authenticated of the target account, which is used to request access to the target content of the first server; the target account is the first The account of the second platform user, the first server is a server of the first platform; the first server includes a target plug-in; the target plug-in is used to authenticate the target account of the second platform; 当所述目标插件包含的认证逻辑不需要确认所述目标账户是否是所述第二平台的注册账户时,所述第一服务器基于所述目标插件对所述待认证信息进行认证;When the authentication logic contained in the target plug-in does not need to confirm whether the target account is a registered account of the second platform, the first server authenticates the information to be authenticated based on the target plug-in; 所述第一服务器在所述待认证信息认证通过的情况下,向所述第一终端发送第一响应消息;其中,所述第一响应消息用于指示所述目标内容。The first server sends a first response message to the first terminal when the authentication of the information to be authenticated is passed; where the first response message is used to indicate the target content. 2.根据权利要求1所述的方法,其特征在于,当所述目标插件包含的认证逻辑需要确认所述目标账户是否是所述第二平台的注册账户时,所述第一服务器基于目标插件对所述待认证信息进行认证,包括:2. The method according to claim 1, wherein when the authentication logic contained in the target plug-in needs to confirm whether the target account is a registered account of the second platform, the first server based on the target plug-in Authenticate the information to be authenticated, including: 所述第一服务器向第二服务器发送请求消息,所述请求消息用于请求认证所述目标账户是否是所述第二平台的注册账户;所述第二服务器是第二平台的服务器;The first server sends a request message to the second server, and the request message is used to request authentication of whether the target account is a registered account of the second platform; the second server is a server of the second platform; 所述第一服务器接收第二响应消息;所述第二响应消息用于指示认证结果;The first server receives a second response message; the second response message is used to indicate an authentication result; 当所述认证结果用于指示所述目标账户是所述第二平台的注册账户时,所述第一服务器基于所述第一服务器中的目标插件对所述待认证信息进行认证。When the authentication result indicates that the target account is a registered account of the second platform, the first server authenticates the information to be authenticated based on the target plug-in in the first server. 3.根据权利要求1所述的方法,其特征在于,所述第一服务器接收第一终端发送的第一访问请求,包括:3. The method according to claim 1, wherein the first server receives the first access request sent by the first terminal, comprising: 所述第一服务器通过统一资源定位系统URL接收所述第一终端发送的第一访问请求。The first server receives the first access request sent by the first terminal through a Uniform Resource Locator URL. 4.根据权利要求1所述的方法,其特征在于,在所述第一服务器基于目标插件对所述待认证信息进行认证之前,所述方法还包括:4. The method according to claim 1, wherein before the first server authenticates the information to be authenticated based on the target plug-in, the method further comprises: 从多个插件中选择目标插件;所述目标插件是符合所述待认证信息认证逻辑的插件。Selecting a target plug-in from multiple plug-ins; the target plug-in is a plug-in that conforms to the authentication logic of the information to be authenticated. 5.根据权利要求1所述的方法,其特征在于,在所述向所述第一终端发送第一响应消息之后,所述方法还包括:5. The method according to claim 1, characterized in that, after sending the first response message to the first terminal, the method further comprises: 在预设时间内,所述第一服务器接收所述第一终端发送的第二访问请求;所述第二访问请求用于请求访问所述第一服务器的目标内容;Within a preset time, the first server receives a second access request sent by the first terminal; the second access request is used to request access to the target content of the first server; 所述第一服务器向所述第一终端发送第三响应消息;所述第三响应消息用于指示所述目标内容。The first server sends a third response message to the first terminal; the third response message is used to indicate the target content. 6.一种访问装置,其特征在于,包括:6. An access device, characterized in that it comprises: 接收模块,用于第一服务器接收第一终端发送的第一访问请求;其中,所述第一访问请求中包含目标账户的待认证信息,用于请求访问所述第一服务器的目标内容;所述目标账户是第二平台用户的账户,所述第一服务器是第一平台的服务器;所述第一服务器包含目标插件;所述目标插件用于对所述第二平台的目标账户进行认证;The receiving module is used for the first server to receive the first access request sent by the first terminal; wherein, the first access request includes the information to be authenticated of the target account, and is used to request access to the target content of the first server; The target account is an account of a second platform user, and the first server is a server of the first platform; the first server includes a target plug-in; the target plug-in is used to authenticate the target account of the second platform; 认证模块,用于当所述目标插件包含的认证逻辑不需要确认所述目标账户是否是所述第二平台的注册账户时,所述第一服务器基于所述目标插件对所述待认证信息进行认证;An authentication module, configured to, when the authentication logic contained in the target plug-in does not need to confirm whether the target account is a registered account of the second platform, the first server performs authentication on the information to be authenticated based on the target plug-in certification; 发送模块,用于所述第一服务器在所述待认证信息认证通过的情况下,向所述第一终端发送第一响应消息;其中,所述第一响应消息用于指示所述目标内容。A sending module, configured for the first server to send a first response message to the first terminal when the authentication of the information to be authenticated is passed; wherein the first response message is used to indicate the target content. 7.根据权利要求6所述的访问装置,其特征在于,7. The access device of claim 6, wherein: 当所述目标插件包含的认证逻辑需要确认所述目标账户是否是所述第二平台的注册账户时,所述发送模块还用于,所述第一服务器向第二服务器发送请求消息,所述请求消息用于请求认证所述目标账户是否是所述第二平台的注册账户;所述第二服务器是第二平台的服务器;When the authentication logic included in the target plug-in needs to confirm whether the target account is a registered account of the second platform, the sending module is further configured to send a request message from the first server to the second server, the The request message is used to request to verify whether the target account is a registered account of the second platform; the second server is a server of the second platform; 所述接收模块还用于,所述第一服务器接收第二响应消息;所述第二响应消息用于指示认证结果;The receiving module is further configured to receive, by the first server, a second response message; the second response message is used to indicate an authentication result; 当所述认证结果用于指示所述目标账户是所述第二平台的注册账户时,所述认证模块具体用于,所述第一服务器基于目标插件对所述待认证信息进行认证;When the authentication result is used to indicate that the target account is a registered account of the second platform, the authentication module is specifically configured to authenticate the information to be authenticated by the first server based on the target plug-in; 所述接收模块具体用于,所述第一服务器通过统一资源定位系统URL接收所述第一终端发送的第一访问请求;The receiving module is specifically configured to receive, by the first server, the first access request sent by the first terminal through a Uniform Resource Locator URL; 所述访问装置还包括:选择模块;The access device also includes: a selection module; 在所述第一服务器基于目标插件对所述待认证信息进行认证之前,所述选择模块用于,从多个插件中选择目标插件;所述目标插件是符合所述待认证信息认证逻辑的插件;Before the first server authenticates the information to be authenticated based on the target plugin, the selection module is configured to select a target plugin from a plurality of plugins; the target plugin is a plugin that conforms to the authentication logic of the information to be authenticated ; 在所述向所述第一终端发送第一响应消息之后,所述接收模块还用于,在预设时间内,所述第一服务器接收所述第一终端发送的第二访问请求;所述第二访问请求用于请求访问所述第一服务器的目标内容;After the first response message is sent to the first terminal, the receiving module is further configured to, within a preset time, the first server receive a second access request sent by the first terminal; the The second access request is used to request access to the target content of the first server; 所述发送模块还用于,所述第一服务器向所述第一终端发送第三响应消息;所述第三响应消息用于指示所述目标内容。The sending module is further configured to: the first server sends a third response message to the first terminal; the third response message is used to indicate the target content. 8.一种访问装置,其特征在于,包括存储器和处理器;所述存储器和所述处理器耦合;所述存储器用于存储计算机程序代码,所述计算机程序代码包括计算机指令;其中,当所述处理器执行所述计算机指令时,使得所述访问装置执行如权利要求1-5中所述的方法。8. An access device, characterized in that it includes a memory and a processor; the memory is coupled to the processor; the memory is used to store computer program codes, and the computer program codes include computer instructions; wherein, when the When the processor executes the computer instructions, the access device is caused to perform the method described in claims 1-5. 9.一种计算机可读存储介质,其特征在于,所述计算机可读存储介质存储有计算机指令;其中,当所述计算机指令在访问装置上运行时,使得所述访问装置执行如权利要求1-5中任意一项所述的方法。9. A computer-readable storage medium, characterized in that the computer-readable storage medium stores computer instructions; wherein, when the computer instructions are run on the access device, the access device is made to execute the method according to claim 1. - The method described in any one of 5.
CN202211127364.7A 2022-09-16 2022-09-16 Access method, device and storage medium Withdrawn CN115499214A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202211127364.7A CN115499214A (en) 2022-09-16 2022-09-16 Access method, device and storage medium

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202211127364.7A CN115499214A (en) 2022-09-16 2022-09-16 Access method, device and storage medium

Publications (1)

Publication Number Publication Date
CN115499214A true CN115499214A (en) 2022-12-20

Family

ID=84467968

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202211127364.7A Withdrawn CN115499214A (en) 2022-09-16 2022-09-16 Access method, device and storage medium

Country Status (1)

Country Link
CN (1) CN115499214A (en)

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116566718A (en) * 2023-06-01 2023-08-08 广州品唯软件有限公司 A platform docking method, device, equipment and readable storage medium

Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016176342A1 (en) * 2015-04-30 2016-11-03 Visa International Service Association Tokenization capable authentication framework
CN113316783A (en) * 2018-11-21 2021-08-27 思杰系统有限公司 Two-factor identity authentication using a combination of active directory and one-time password token
CN114329383A (en) * 2021-12-24 2022-04-12 金蝶软件(中国)有限公司 Login-free access method, device, equipment and medium of third-party application system

Patent Citations (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
WO2016176342A1 (en) * 2015-04-30 2016-11-03 Visa International Service Association Tokenization capable authentication framework
CN113316783A (en) * 2018-11-21 2021-08-27 思杰系统有限公司 Two-factor identity authentication using a combination of active directory and one-time password token
CN114329383A (en) * 2021-12-24 2022-04-12 金蝶软件(中国)有限公司 Login-free access method, device, equipment and medium of third-party application system

Cited By (1)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN116566718A (en) * 2023-06-01 2023-08-08 广州品唯软件有限公司 A platform docking method, device, equipment and readable storage medium

Similar Documents

Publication Publication Date Title
US10621329B2 (en) Mobile application, resource management advice
US11799841B2 (en) Providing intercommunication within a system that uses disparate authentication technologies
US11775629B2 (en) Client device information for controlling access to web applications
US20130086657A1 (en) Relying party platform
CN110958237A (en) A method and device for authorization verification
CN112491778A (en) Authentication method, device, system and medium
US20230306128A1 (en) Systems and methods for using secure, encrypted communications across distributed computer networks to provide variable resiliency when indexing blockchain states for performing blockchain operations in decentralized applications using cryptography-based digital repositories
CN112100590A (en) Tourism big data cloud platform and user authority management method thereof
US11997216B2 (en) Systems and methods for maintaining secure, encrypted communications across distributed computer networks by linking cryptography-based digital repositories in order to perform blockchain operations in decentralized applications
US9027155B2 (en) System for governing the disclosure of restricted data
CN115499214A (en) Access method, device and storage medium
CN114745185B (en) Cluster access method and device
WO2023193572A1 (en) Data management method and apparatus, server and storage medium
CN111064675A (en) Access flow control method, device, network equipment and storage medium
CN118171251B (en) Dynamic authority control method and device
US10482397B2 (en) Managing identifiers
US12206788B2 (en) Systems and methods for using secure, encrypted communications across distributed computer networks to efficiently update cryptography-based digital repositories for performing blockchain operations in decentralized applications
US12244722B2 (en) Systems and methods for selecting secure, encrypted communications across distributed computer networks for cryptography-based digital repositories in order to perform blockchain operations in decentralized
US12219068B2 (en) Systems and methods for using secure, encrypted communications across distributed computer networks to efficiently index blockchain states for performing blockchain operations in decentralized applications using cryptography-based digital repositories
CN120358040A (en) User terminal authentication method and device, electronic equipment and storage medium
TW201732583A (en) Method for executing request and associated server
CN119720172B (en) Security authentication method, device, electronic device, medium and program product
CN115834252B (en) Service access method and system
US20250307005A1 (en) Methods and apparatus to access federated resources
US20140279989A1 (en) Managing identifiers

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication
WW01 Invention patent application withdrawn after publication

Application publication date: 20221220