Platform authorization method, platform server side, application client side and system

A technology of application client and platform service, applied in the field of platform authorization method, platform server and application client and system, can solve the problems of not high security, unfriendly, great style differences, etc. Effect

Active Publication Date: 2014-10-22
BAIDU ONLINE NETWORK TECH (BEIJIBG) CO LTD
View PDF8 Cites 39 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0003] In the existing technology, before the user authorizes the application client, he needs to log in to the platform based on the user's existing account, otherwise the platform cannot know which user wants to authorize the corresponding application client, and in order to ensure security, the application client is generally required The terminal provides a web view (WebView) or an external browser to load the login authorization page provided by the corresponding platform, and the user performs login authorization on the login authorization page, so that the application client cannot directly access sensitive information such as the user's account number and password.
But such a process experience is very unfriendly in many cases:
[0004] First, because a web page (web page) needs to be loaded during authorization, and the loading speed of the web page depends on the network speed of the user's mobile device. In most 2G environments, the loading speed of this page is extremely slow, and the user needs to wait It takes a long time to see the login authorization interface;
[0005] Second, since web pages are provided uniformly by the open platform, third-party applications generally cannot flexibly customize the style, layout, and content of the page. In many cases, the style of this page will be different from that of the application client itself. The style of the game is very different, making it difficult for third-party applications to accept, especially in third-party game applications;
[0006] Third, if the application client loads the login authorization page through an external browser, the user experience will drop sharply. If it is loaded through WebView, the third-party application still has a way to obtain sensitive information such as the account number and password entered by the user. Its security is not high enough;
[0007] Fourth, when an application client needs user data and cloud capabilities provided by multiple open platforms to implement a function, it must find a way to guide users to log in and authorize on multiple platforms one by one. In the case of a login authorization interface, such work basically cannot be carried out effectively

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Platform authorization method, platform server side, application client side and system
  • Platform authorization method, platform server side, application client side and system
  • Platform authorization method, platform server side, application client side and system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment 1

[0056] figure 1 It is a flow chart of the platform authorization method of the platform server provided by Embodiment 1 of the present invention. This embodiment is applicable to the situation where the application client requests to call the OpenAPI in the open platform that requires the authorization of the end user to obtain an authorized access token, wherein the application The client may be application software installed on the terminal, an instant messaging client, a game entertainment client or a system tool on the terminal, that is, a third-party application. The method can be executed by the platform server, which is a server that can provide platform services to third-party applications, such as figure 1 As shown, the platform authorization method of the platform server described in this embodiment includes:

[0057] S101. The platform server receives a first verification message sent by an application client through a first path and acquires a terminal identifier ...

Embodiment 2

[0079] figure 2 It is a flow chart of the platform authorization method of the application client provided by Embodiment 2 of the present invention. This embodiment is applicable to the situation where the application client requests to call the OpenAPI in the open platform that requires the authorization of the end user to obtain an authorized access token, wherein the application The client may be application software installed on the terminal, an instant messaging client, a game entertainment client or a system tool on the terminal, that is, a third-party application. This method can be executed by the application client, such as figure 2 As shown, the platform authorization method of the application client described in this embodiment includes:

[0080] S201. The application client sends a first verification message to the platform server through the first path, and the first verification message includes a random character string

[0081] In order to prevent the appli...

Embodiment 3

[0091] image 3 It is a structural block diagram of the platform server described in Embodiment 3 of the present invention, such as image 3 As shown, the platform server described in this embodiment includes:

[0092] The first verification message receiving unit 301 is configured to receive a first verification message sent by an application client through a first path and obtain a terminal identifier of a terminal where the application client is located, where the first verification message includes a random character string;

[0093] A mapping relationship recording unit 302, configured to record the mapping relationship between the received random character string and the terminal identifier;

[0094] The second verification message receiving unit 303 is configured to receive the second verification message sent by the application client through the second path, the second verification message includes the random character string, and the application client uses a preset...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

PUM

No PUM Login to view more

Abstract

The embodiment of the invention discloses a platform authorization method, a platform server side, an application client side and a system. The method includes receiving a first verification message sent by the application client side through a first path and obtaining terminal identification of the terminal of the application client side; recording the mapping relationship between the received random strings and the terminal identification; receiving a second verification message sent by the application client side through a second path; reading identity authentication information submitted in a registration process from a database according to the received identification, decrypting and verifying encrypted identity strings, extracting the corresponding terminal identification from the recorded mapping relationship if the consistency is determined, and obtaining corresponding user account information according to the terminal identification; generating an authorized access token according to the user account information and the identity authentication information and sending the authorized access token to the application client side. The platform authorization method, the platform server side, the application client side and the system enable a user to have no awareness of the authorization process and can further improve the security of the authorization.

Description

technical field [0001] The invention relates to the technical field of computer communication, in particular to a platform authorization method, a platform server, an application client and a system. Background technique [0002] An open platform refers to an open basic service platform for third parties provided by a website, such as open cloud platforms such as Baidu, Tencent, Ali, and Sina Weibo. In order to obtain various high-value cloud capabilities and user data provided by these open platforms, third-party application clients will support the open authorization interfaces provided by major platforms, so as to obtain the authorization of the application client on these platforms. Generate an authorized access token, and use the access token to call the OpenAPI (Open Application Programming Interface, Open Application Programming Interface) provided by the major platforms to obtain the cloud capabilities required by the application client and the relevant data of the u...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to view more

Application Information

Patent Timeline
no application Login to view more
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/06
Inventor 朱建庭郑伟德张弛
Owner BAIDU ONLINE NETWORK TECH (BEIJIBG) CO LTD
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Try Eureka
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap