Authorization system based on oauth2 protocol enhancement and method thereof

Abstract

The invention relates to an authorization system and method based on oauth2 protocol enhancement, the system comprises a client and an authorization platform, the client is unidirectionally connected to a plurality of different service systems so as to send access request information to the corresponding service systems from the client, and the client and the plurality of service systems are respectively bidirectionally connected with the authorization platform. The authorization platform is used for pushing an authorization confirmation page to the client and returning an authorization code to the corresponding service system, the client is used for executing user login operation and sending authorization confirmation information to the authorization platform, and the service system is used for sending authorization request information to the authorization platform, and acquiring the token from the authorization platform according to the authorization code, and acquiring the user information from the authorization platform according to the token. Compared with the prior art, the user operation in the cross-service interaction process can be simplified, and the user does not need to repeatedly carry out login operation; and meanwhile, data security is ensured, user information does not need to be transmitted between service systems, and interception by rogue program information is avoided.

Description

technical field [0001] The invention relates to the technical field of authorization authentication, in particular to an authorization system enhanced based on the oauth2 protocol and a method thereof. Background technique [0002] Compared with traditional application systems, Internet applications have the advantages of better user experience and data security. Therefore, Internet applications have developed rapidly, and user identification can reliably ensure the safe operation of applications. [0003] At present, for a single application system, the user identity can be effectively identified through the authentication method of user login authentication, but for some business scenarios that may involve cross-service interaction, there will be problems that require multiple authentications. This situation not only increases the complexity of system interaction, but also easily leads to poor user experience and reduced business access efficiency. In order to solve this p...

AI Technical Summary

Problems solved by technology

[0003] At present, for a single application system, the user identity can be effectively identified through the authentication method of user login authentication, but for some business scenarios that may involve cross-service interaction, there will be problems that require multiple authentications. This situation not only increases the complexity of system interaction, but also easily leads to poor user experience and reduced business access efficiency. In order to solve this problem, most existing technologies use the method of transferring user information between different systems to achieve login-free authentication. Authentication, although this method can save customers from repeated authentication, there are great hidden dangers in data security. In the process of transmitting user information, it may be intercepted by malicious program information, resulting in user information being leaked

Images