Platform authorization method, platform service side, application client side and system

Abstract

The embodiment of the invention discloses a platform authorization method, a platform service side, an application client side and a system. The platform authorization method comprises the following steps: a first validation message sent by the application client side through a first pathway is received and a terminal identifier is acquired; the mapping relation between received random character strings and the terminal identifier is recorded; a second validation message sent by the application client side through a second pathway is received; identity certification information submitted during a registration process is read from a data base according to an identity identifier; signature is conducted on the extracted identity certification information; if a generated signature value is consistent with a received signature value, a corresponding terminal identifier is extracted from the recorded mapping relation according to the random character strings; corresponding information on a user account is acquired according to the terminal identifier; an authorized access token is generated according to the information on the user account and the identity identification information; the authorized access token is sent to the application client side. According to the technical scheme provided by the embodiment of the invention, the user cannot perceive the authorization process and the authorization safety can be further improved.

Description

technical field [0001] The invention relates to the technical field of computer communication, in particular to a platform authorization method, a platform server, an application client and a system. Background technique [0002] An open platform refers to an open basic service platform for third parties provided by a website, such as open cloud platforms such as Baidu, Tencent, Ali, and Sina Weibo. In order to obtain various high-value cloud capabilities and user data provided by these open platforms, third-party application clients will support the open authorization interfaces provided by major platforms, so as to obtain the authorization of the application client on these platforms. Generate an authorized access token, and use the access token to call the OpenAPI (Open Application Programming Interface, Open Application Programming Interface) provided by the major platforms to obtain the cloud capabilities required by the application client and the relevant data of the u...

AI Technical Summary

Problems solved by technology

[0003] In the existing technology, before the user authorizes the application client, he needs to log in to the platform based on the user's existing account, otherwise the platform cannot know which user wants to authorize the corresponding application client, and in order to ensure security, the application client is generally required The terminal provides a web view (WebView) or an external browser to load the login authorization page provided by the corresponding platform, and the user performs login authorization on the login authorization page, so that the application client cannot directly access sensitive information such as the user's account number and password.

But such a process experience is very unfriendly in many cases:

[0004] First, because a web page (web page) needs to be loaded during authorization, and the loading speed of the web page depends on the network speed of the user's mobile device. In most 2G environments, the loading speed of this page is extremely slow, and the user needs to wait It takes a long time to see the login authorization interface;

[0005] Se

Images