Method and apparatus for authorization

What is AI technical title?
AI technical title is built by PatSnap AI team. It summarizes the technical point description of the patent document.
By grouping OAuth2.0 authorized resources, the issue of multiple confirmations in OAuth2.0 is resolved, improving the user experience and avoiding resource authorization failures.

CN116527364BActive Publication Date: 2026-06-12BEIJING DAJIA INTERNET INFORMATION TECH CO LTD

View PDF 1 Cites 0 Cited by

Patent Information

Authority / Receiving Office: CN · China
Patent Type: Patents(China)
Current Assignee / Owner: BEIJING DAJIA INTERNET INFORMATION TECH CO LTD
Filing Date: 2023-05-08
Publication Date: 2026-06-12

Application Information

Patent Timeline

08 May 2023

Application

12 Jun 2026

Publication

CN116527364B

IPC: H04L9/40; H04L67/02

CPC: H04L63/10; H04L67/02

AI Tagging

Application Domain

Securing communication

Explore More Agents

Novelty Search
Search existing technologies and assess novelty
↗
FTO
Analyze whether a product may infringe others' patents
↗
Design FTO
Check prior-design risk for exterior design
↗
Drafting
Draft patent application text based on a technical solution
↗
Find Solutions with TRIZ
Generate feasible solution to solve your technical challenge
↗

Similar Technology Patents

Network traffic packet header trajectory synthesis method and device, server and storage medium
CN120567488BSecuring communication
A method and system for resisting a fake MAC attack of a smart substation
CN119652655BSecuring communicationInformation technology support system
System for sharing information among multiple private blockchains and method of sharing information among multiple private blockchains using the same
US20260172403A1Securing communication
Device-level anomaly research and judgment method and device for edge industrial internet of things system
CN122204520ASecuring communication
Data encryption and access control method for cloud storage
CN122204525ADigital data protection Securing communication

Get free access to AI patent search and analysis

Check patentability, review prior art and ask IP Agent with full patent context.

AI Technical Summary

⚠Technical Problem

In the OAuth 2.0 protocol, users need to confirm multiple times when authorizing multiple information resources, resulting in a poor user experience, and it is not possible to reject some resources without affecting the overall authorization.

⚗Method used

Multiple information resources are grouped, and an authorization request page is output for each group. The user's confirmation or rejection instruction is received, and the corresponding authorization credentials are sent.

🎯Benefits of technology

This reduces the number of authorization attempts, improves the user experience, and avoids the problem of all resource authorizations failing due to the rejection of one resource.

✦ Generated by Eureka AI based on patent content.

Smart Images

Figure CN116527364B_ABST

Patent Text Reader

Abstract

The present disclosure relates to an authorization method and device. The authorization method comprises: in response to receiving an authorization application of an application for a plurality of information resources, grouping the plurality of information resources; outputting a group authorization request page for each group respectively; receiving a confirmation authorization instruction or a refusal authorization instruction of a user for each group authorization request page; and sending a user authorization credential for each information resource in the group corresponding to the group authorization request page for which the user's confirmation authorization instruction is received. According to the authorization method and device of the present disclosure, the problem of too frequent authorization in the user authorization process can be solved, and the problem of all resource authorization failures caused by the user's refusal of one resource can be avoided, ultimately improving the user experience.

Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] This disclosure relates to the field of computer technology. More specifically, this disclosure relates to a licensing method and apparatus. Background Technology

[0002] OAuth is an open standard that allows users to authorize third-party applications to access information they store on another service provider without having to provide their username and password to the third-party mobile application or share all of their data. OAuth 2.0 is a continuation of the OAuth protocol, focusing on ease of use for client developers. It either authorizes users through approved interactions between resource owners and HTTP service providers on their behalf, or allows third-party applications to obtain access on behalf of users. It also provides dedicated authentication processes for web applications, desktop applications, mobile devices, and living room devices.

[0003] In the realm of open platforms on the internet, the OAuth 2.0 protocol is widely used in scenarios such as third-party login and sharing internal resources. For example, in the current WeChat third-party login scenario, WeChat users authorize third-party applications to access their login information registered on WeChat, thereby enabling them to log in to other applications through WeChat. Similarly, users can authorize third-party applications to access other resources besides their login information, such as their profile picture, Moments photos, etc. These information resources are called "scopes" in the OAuth protocol.

[0004] Currently, the open platform authorizes users within an app by launching an authorization page for each scope. If an app needs to request too many scopes at once, this results in numerous authorization page launches. For example, with a mini-program, when logging in, a user might request five authorizations at once, but this results in five authorization page launches, leading to a poor user experience. Furthermore, all authorization information cannot be placed on a single authorization page; otherwise, if a user only wants to reject one resource, all authorized resources will be rejected simultaneously. Summary of the Invention

[0005] Exemplary embodiments of this disclosure provide an authorization method and apparatus to at least solve the authorization problems in the related art, or may not solve any of the aforementioned problems.

[0006] According to an exemplary embodiment of the present disclosure, an authorization method is provided, comprising: in response to receiving an authorization request from an application for multiple information resources, grouping the multiple information resources into groups; outputting a group authorization request page for each group; receiving a user's confirmation authorization instruction or rejection authorization instruction for each group authorization request page; and sending a user authorization credential for each information resource in the group corresponding to the group authorization request page for which the user's confirmation authorization instruction has been received.

[0007] Optionally, the step of grouping the multiple information resources in response to receiving an authorization request from an application for multiple information resources may include: grouping the multiple information resources based on a preset grouping strategy in response to receiving an authorization request from an application for multiple information resources.

[0008] Optionally, grouping the plurality of information resources based on a preset grouping strategy may include: matching the plurality of information resources with each strategy in the preset grouping strategy, and grouping the plurality of information resources according to the matching results.

[0009] Optionally, matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results may include: when the plurality of information resources include all information resources of the first strategy in the preset grouping strategies, grouping all information resources of the first strategy included in the plurality of information resources into one group.

[0010] Optionally, the step of matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results may include: when the plurality of information resources only include a portion of the information resources of the first strategy in the preset grouping strategies, not grouping the portion of information resources in the first strategy included in the plurality of information resources.

[0011] Optionally, matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results may include: when the plurality of information resources include at least a portion of the information resources of the second strategy in the preset grouping strategies, grouping the at least a portion of the information resources of the second strategy included in the plurality of information resources into one group.

[0012] Optionally, matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results may include: grouping the at least part of the information resources into one group when the plurality of information resources include at least part of the information resources of the third strategy in the preset grouping strategy and there are no authorized information resources among the at least part of the information resources.

[0013] Optionally, the step of matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results may include: not grouping the at least part of the information resources when the plurality of information resources include at least part of the information resources of the third strategy in the preset grouping strategy and there are authorized information resources among the at least part of the information resources.

[0014] Optionally, matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results may include: when the plurality of information resources include at least a portion of the information resources of the fourth strategy in the preset grouping strategy, and there are authorized information resources among the at least a portion of the information resources, grouping the unauthorized information resources among the at least a portion of the information resources into one group.

[0015] Optionally, the preset grouping strategy can be based on the functional settings of information resources.

[0016] According to an exemplary embodiment of the present disclosure, an authorization apparatus is provided, comprising: a resource grouping unit configured to group the plurality of information resources in response to receiving an authorization request from an application for a plurality of information resources; a group request page output unit configured to output a group authorization request page for each group; an instruction receiving unit configured to receive a user's confirmation authorization instruction or rejection authorization instruction for each group authorization request page; and an authorization credential sending unit configured to send a user authorization credential for each information resource in the group corresponding to the group authorization request page for which the user's confirmation authorization instruction has been received.

[0017] Optionally, the resource grouping unit can be configured to: in response to receiving an authorization request from an application for multiple information resources, group the multiple information resources based on a preset grouping strategy.

[0018] Optionally, the resource grouping unit can be configured to: match the plurality of information resources with each of the preset grouping strategies, and group the plurality of information resources according to the matching results.

[0019] Optionally, the resource grouping unit can be configured to group all information resources in the first strategy included in the plurality of information resources into one group when the plurality of information resources include all information resources in the first strategy of the preset grouping strategy.

[0020] Optionally, the resource grouping unit can be configured to: when the plurality of information resources only include a portion of the information resources in the first strategy of the preset grouping strategy, not to group the portion of information resources in the first strategy included in the plurality of information resources.

[0021] Optionally, the resource grouping unit may be configured to group at least a portion of the information resources in the second strategy included in the preset grouping strategy into a group when the plurality of information resources include at least a portion of the information resources in the second strategy.

[0022] Optionally, the resource grouping unit may be configured to group the at least part of the information resources into one group when the plurality of information resources include at least part of the information resources of the third strategy in the preset grouping strategy, and there are no authorized information resources among the at least part of the information resources.

[0023] Optionally, the resource grouping unit may be configured to: when the plurality of information resources include at least a portion of the information resources of the third strategy in the preset grouping strategy, and when there are authorized information resources among the at least a portion of the information resources, the at least a portion of the information resources shall not be grouped.

[0024] Optionally, the resource grouping unit may be configured to group unauthorized information resources among the at least some of the information resources, where the plurality of information resources include at least some of the information resources of the fourth strategy in the preset grouping strategy, and there are authorized information resources among the at least some information resources.

[0025] Optionally, the preset grouping strategy can be based on the functional settings of information resources.

[0026] According to an exemplary embodiment of the present disclosure, an electronic device is provided, comprising: a processor; a memory for storing processor-executable instructions; wherein the processor is configured to execute the instructions to implement an authorized method according to an exemplary embodiment of the present disclosure.

[0027] According to exemplary embodiments of the present disclosure, a computer-readable storage medium is provided having a computer program stored thereon, which, when executed by a processor of an electronic device, causes the electronic device to perform an authorized method according to exemplary embodiments of the present disclosure.

[0028] According to exemplary embodiments of the present disclosure, a computer program product is provided, including a computer program / instructions that, when executed by a processor, implement an authorized method according to exemplary embodiments of the present disclosure.

[0029] The technical solutions provided by the embodiments of this disclosure bring at least the following beneficial effects:

[0030] By grouping multiple information resources for which authorization is requested and outputting a group authorization request page for each group, the problem of excessive authorization during the user authorization process is solved. By receiving the user's confirmation authorization instruction or rejection authorization instruction for each group authorization request page, and sending user authorization credentials to each information resource in the group corresponding to the group authorization request page that receives the user's confirmation authorization instruction, the problem of all resource authorization failures due to the user rejecting one resource is avoided, ultimately improving the user experience.

[0031] It should be understood that the above general description and the following detailed description are exemplary and explanatory only, and are not intended to limit this disclosure. Attached Figure Description

[0032] The accompanying drawings, which are incorporated in and form part of this specification, illustrate embodiments consistent with this disclosure and, together with the description, serve to explain the principles of this disclosure, and are not intended to unduly limit this disclosure.

[0033] Figure 1 Exemplary system architectures in which exemplary embodiments of this disclosure can be applied are shown.

[0034] Figure 2 A flowchart illustrating an authorized method according to an exemplary embodiment of the present disclosure is shown.

[0035] Figure 3 A schematic diagram illustrating an authorized method according to an exemplary embodiment of the present disclosure is shown.

[0036] Figure 4 A block diagram of an authorized apparatus according to an exemplary embodiment of the present disclosure is shown.

[0037] Figure 5 This is a block diagram of an electronic device 500 according to an exemplary embodiment of the present disclosure. Detailed Implementation

[0038] To enable those skilled in the art to better understand the technical solutions of this disclosure, the technical solutions in the embodiments of this disclosure will be clearly and completely described below with reference to the accompanying drawings.

[0039] It should be noted that the terms "first," "second," etc., used in the specification, claims, and accompanying drawings of this disclosure are used to distinguish similar objects and are not necessarily used to describe a specific order or sequence. It should be understood that such data can be interchanged where appropriate so that the embodiments of this disclosure described herein can be implemented in orders other than those illustrated or described herein. The embodiments described in the following examples do not represent all embodiments consistent with this disclosure. Rather, they are merely examples of apparatuses and methods consistent with some aspects of this disclosure as detailed in the appended claims.

[0040] It should be noted that the phrase "at least one of several items" in this disclosure refers to three parallel cases: "any one of the several items", "a combination of any number of the several items", and "all of the several items". For example, "including at least one of A and B" includes the following three parallel cases: (1) including A; (2) including B; (3) including A and B. As another example, "performing at least one of step one and step two" indicates the following three parallel cases: (1) performing step one; (2) performing step two; (3) performing both step one and step two.

[0041] In related technologies, for example, when performing an operation in application A, it requires resources A, B, and C from application B. During this process, the resource holder, the user, simultaneously requests authorization for all three resources from application B within application A. An authorization page appears in application B, and after all authorizations are granted, the operation begins to execute within application A. However, if the user does not wish to authorize any of the resources, they will refuse authorization for all resources.

[0042] This disclosure provides a group authorization mode that groups scopes with similar functions together, allowing users to directly authorize the entire group. This effectively reduces the number of authorization requests, optimizes the user experience, and improves conversion rates. The following will refer to... Figures 1 to 5 A detailed description of the authorized methods and apparatus according to exemplary embodiments of the present disclosure.

[0043] Figure 1 An exemplary system architecture 100 is shown that can be applied to an exemplary embodiment of this disclosure.

[0044] like Figure 1As shown, the system architecture 100 may include terminal devices 101, 102, and 103, a network 104, and a server 105. Network 104 serves as the medium for providing communication links between terminal devices 101, 102, and 103 and server 105. Network 104 may include various connection types, such as wired or wireless communication links or fiber optic cables. Users can use terminal devices 101, 102, and 103 to interact with server 105 through network 104 to receive or send messages (e.g., authorization requests, user authorization credentials). Various client applications may be installed on terminal devices 101, 102, and 103, such as audio / video calling software, audio / video recording software, instant messaging software, conferencing software, email clients, and social media platform software. Terminal devices 101, 102, and 103 can be hardware or software. When terminal devices 101, 102, and 103 are hardware, they can be various electronic devices with network communication capabilities, including but not limited to smartphones, tablets, laptops, and desktop computers. When terminal devices 101, 102, and 103 are software, they can be installed in the electronic devices listed above. They can be implemented as multiple software programs or software modules (e.g., to provide distributed services) or as a single software program or software module. No specific limitations are made here.

[0045] Server 105 can be a server that provides various services, such as a backend server that supports multimedia applications installed on terminal devices 101, 102, and 103. The backend server can parse, store, and process received audio and video data upload requests, and can also receive audio and video data download requests sent by terminal devices 101, 102, and 103, and feed back the audio and video data indicated by the download request to terminal devices 101, 102, and 103.

[0046] It should be noted that a server can be either hardware or software. When the server is hardware, it can be implemented as a distributed server cluster consisting of multiple servers, or as a single server. When the server is software, it can be implemented as multiple software programs or software modules (e.g., used to provide distributed services), or as a single software program or software module. No specific limitations are made here.

[0047] It should be noted that the authorization method provided in this disclosure is typically executed by a terminal device, but it can also be executed by a server, or it can be executed collaboratively by a terminal device and a server. Accordingly, the authorization device can be located in the terminal device, the server, or both.

[0048] It should be understood that Figure 1The number of terminal devices, networks, and servers shown is merely illustrative. Any number of terminal devices, networks, and servers can be used as needed, and this disclosure places no limitation on this.

[0049] Figure 2 A flowchart illustrating an authorized method according to an exemplary embodiment of the present disclosure is shown. Figure 3 A schematic diagram illustrating an authorized method according to an exemplary embodiment of the present disclosure is shown. Figure 2 and Figure 3 The authorization method in the system can be performed by, for example, but not limited to, an authorization server.

[0050] Reference Figure 2 In step S201, in response to receiving an authorization request from an application for multiple information resources, the multiple information resources are grouped. For example, such as Figure 3 As shown, the main application APP requests authorization for three information resources (scope_1, scope_2 and scope_3). These three information resources (scope_1, scope_2 and scope_3) are divided into two groups: scope_1 and scope_2 are in the first group, and scope_3 is in the second group.

[0051] In an exemplary embodiment of this disclosure, when grouping the multiple information resources in response to receiving an authorization request from an application for multiple information resources, the multiple information resources can be grouped based on a preset grouping strategy in response to receiving an authorization request from an application for multiple information resources.

[0052] In an exemplary embodiment of this disclosure, when grouping the plurality of information resources based on a preset grouping strategy, the plurality of information resources can be matched with each strategy in the preset grouping strategy, and the plurality of information resources can be grouped according to the matching result.

[0053] In an exemplary embodiment of this disclosure, when matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results, it can be first determined whether the plurality of information resources include all information resources of the first strategy in the preset grouping strategy. Then, if the plurality of information resources include all information resources of the first strategy, all information resources of the first strategy included in the plurality of information resources are grouped together. And if the plurality of information resources only include a portion of the information resources of the first strategy, the portion of the information resources of the first strategy included in the plurality of information resources is not grouped.

[0054] In an exemplary embodiment of this disclosure, when matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results, it can be first determined whether the plurality of information resources include at least a portion of the information resources of the second strategy in the preset grouping strategy. Then, if the plurality of information resources include at least a portion of the information resources of the second strategy, the at least a portion of the information resources of the second strategy included in the plurality of information resources are grouped together.

[0055] In an exemplary embodiment of this disclosure, when matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results, it can be first determined whether at least some of the information resources of the third strategy in the preset grouping strategy included in the plurality of information resources are authorized information resources. Then, if no authorized information resources are found, at least some of the information resources of the third strategy included in the plurality of information resources are grouped together. If authorized information resources are found, at least some of the information resources of the third strategy included in the plurality of information resources are not grouped.

[0056] In an exemplary embodiment of this disclosure, when matching the plurality of information resources with each of the preset grouping strategies and grouping the plurality of information resources according to the matching results, it can be first determined whether at least some of the information resources of the fourth strategy in the preset grouping strategy included in the plurality of information resources are authorized information resources. Then, if there are authorized information resources, the unauthorized information resources in at least some of the information resources of the fourth strategy included in the plurality of information resources are grouped together.

[0057] In an exemplary embodiment of this disclosure, the preset grouping strategy may be based on the functional settings of information resources.

[0058] For users, they still request their respective information resources (hereinafter, information resources can also be referred to as scopes). The authorization server determines whether the requested information resources can meet the grouping policy. The grouping policy supports flexible policy configuration and can support various different situations.

[0059] For example, grouping strategies need to support the following capabilities:

[0060] A. Supports flexible scope of application;

[0061] B. Supports diverse grouping and aggregation logic;

[0062] C. Supports both forward and reverse mapping relationships.

[0063] As an example, a grouping strategy may include at least one of the following: whether the grouping strategy is in effect, the scope of the grouping strategy, the scope of the grouping strategy that is not in effect, and information resource grouping.

[0064] As an example, multiple grouping strategies can be used together.

[0065] The strategy name of each grouping strategy is a unique identifier for each grouping strategy.

[0066] When a grouping policy's scope (workSphere, meaning the scope at the application level) is "all", it is enabled for all applications. When a grouping policy includes an unscoped scope (unWorkSphere, meaning the scope is not applied at the application level), applications within that unscoped scope will not be started. Among all items included in a grouping policy, the unscoped scope has the highest priority. When a grouping policy includes "enable", if "enable" is true, the grouping policy is enabled (i.e., it takes effect); if "enable" is false, the grouping policy is disabled (i.e., it does not take effect).

[0067] When a grouping policy includes needUnauthorized, if needUnauthorized is true, then if any information resources within the group (containsScope) are already authorized, the grouping policy will not apply. If needUnauthorized is false, then the judgment will be skipped.

[0068] When a grouping strategy includes needAllGroup, if needAllGroup is true, it is determined whether the requested information resource contains all the information resources in needAllGroup (i.e., containsScope). If it only contains some information resources, this strategy has no effect. If needAllGroup is false, this judgment is skipped.

[0069] When a grouping policy includes needReplaceAll, if needReplaceAll is true, the entire group will be replaced regardless of whether the information resources (containsScope) contained in the group are authorized. If needReplaceAll is false, only unauthorized information resources will be replaced.

[0070] In step S202, a group authorization request page is output for each group.

[0071] In an exemplary embodiment of this disclosure, after the multiple information resources are grouped in step S201, the authorization server combines the corresponding information resources. When the authorization request page is sent to the main application APP, the grouping replaces the corresponding multiple information resources. At this time, the multiple authorization page confirmations corresponding to multiple information resources in the same authorization group are changed into a single group authorization page, reducing the number of user confirmations and improving the user experience.

[0072] For example, such as Figure 3 As shown, the authorization page is launched for scope_1 and scope_2 in the first group, and the authorization page is launched for scope_3 in the second group.

[0073] In step S203, the system receives a confirmation authorization instruction or a denial authorization instruction from the user for each group authorization request page.

[0074] For example, such as Figure 3 As shown, during the authorization confirmation phase, the user confirms authorization for both the authorization request page in the first group and the authorization request page in the second group.

[0075] In step S204, for each information resource in the group corresponding to the group authorization request page that received the user confirmation authorization instruction, a user authorization credential is sent.

[0076] In an exemplary embodiment of this disclosure, when using authorized resources after authorization is completed, it is necessary to parse the group into specific information resources, and then return the user authorization credential for each information resource separately.

[0077] For example, such as Figure 3 As shown, in the authorization phase after authorization is confirmed, the first group is split into scope_1 and scope_2, and the user authorization credentials of each of scope_1, scope_2 and scope_3 are returned.

[0078] The authorization method according to the exemplary embodiments of this disclosure solves the problem of excessive authorization during the user authorization process by grouping multiple information resources for which authorization is requested and outputting a group authorization request page for each group. By receiving the user's confirmation authorization instruction or rejection authorization instruction for each group authorization request page, and sending the user authorization credential for each information resource in the group corresponding to the group authorization request page that received the user's confirmation authorization instruction, the method avoids the problem of all resource authorization failures due to the user rejecting one resource, thereby ultimately improving the user experience.

[0079] The above has been combined Figure 2 and Figure 3 The licensing method according to exemplary embodiments of this disclosure has been described. Hereinafter, reference will be made to... Figure 4 The authorized apparatus and its units according to exemplary embodiments of the present disclosure are described.

[0080] Figure 4 A block diagram of an authorized apparatus according to an exemplary embodiment of the present disclosure is shown.

[0081] Reference Figure 4 The authorization device includes a resource grouping unit 41, a group request page output unit 42, an instruction receiving unit 43, and an authorization credential sending unit 44.

[0082] Resource grouping unit 41 is configured to group the multiple information resources in response to receiving an application’s authorization request for multiple information resources.

[0083] In an exemplary embodiment of this disclosure, the resource grouping unit 41 may be configured to: in response to receiving an authorization request from an application for multiple information resources, group the multiple information resources based on a preset grouping strategy.

[0084] In an exemplary embodiment of this disclosure, the resource grouping unit 41 may be configured to: match the plurality of information resources with each of the preset grouping strategies, and group the plurality of information resources according to the matching results.

[0085] In an exemplary embodiment of this disclosure, the resource grouping unit 41 may be configured to group all information resources in the first strategy included in the plurality of information resources into one group when the plurality of information resources include all information resources in the first strategy of the preset grouping strategy.

[0086] In an exemplary embodiment of this disclosure, the resource grouping unit 41 may be configured to: when the plurality of information resources only include a portion of the information resources in the first strategy of the preset grouping strategy, not to group the portion of the information resources in the first strategy included in the plurality of information resources.

[0087] In an exemplary embodiment of this disclosure, the resource grouping unit 41 may be configured to group at least a portion of the information resources in the second strategy included in the plurality of information resources into a group when the plurality of information resources include at least a portion of the information resources in the second strategy of the preset grouping strategy.

[0088] In an exemplary embodiment of this disclosure, the resource grouping unit 41 may be configured to group the at least part of the information resources into a group when the plurality of information resources include at least part of the information resources of the third strategy in the preset grouping strategy and there are no authorized information resources among the at least part of the information resources.

[0089] In an exemplary embodiment of this disclosure, the resource grouping unit 41 may be configured to: not group the at least part of the information resources when the plurality of information resources include at least part of the information resources of the third strategy in the preset grouping strategy, and there are authorized information resources among the at least part of the information resources.

[0090] In an exemplary embodiment of this disclosure, the resource grouping unit 41 may be configured to group unauthorized information resources among the at least some of the information resources, where the plurality of information resources include at least some of the information resources of the fourth strategy in the preset grouping strategy, and there are authorized information resources among the at least some of the information resources.

[0091] In an exemplary embodiment of this disclosure, the preset grouping strategy may be based on the functional settings of information resources.

[0092] Group request page output unit 42 is configured to output a group authorization request page for each group separately.

[0093] The instruction receiving unit 43 is configured to receive confirmation authorization instructions or denial authorization instructions from users for each group authorization request page.

[0094] The authorization credential sending unit 44 is configured to send a user authorization credential to each information resource in the group corresponding to the group authorization request page that has received the user confirmation authorization instruction.

[0095] Regarding the apparatus in the above embodiments, the specific manner in which each unit performs its operation has been described in detail in the embodiments related to the method, and will not be elaborated upon here.

[0096] The above has been combined Figure 4 An authorized apparatus according to exemplary embodiments of the present disclosure has been described. Next, in conjunction with... Figure 5 An electronic device according to exemplary embodiments of the present disclosure will be described.

[0097] Figure 5 This is a block diagram of an electronic device 500 according to an exemplary embodiment of the present disclosure.

[0098] Reference Figure 5 The electronic device 500 includes at least one memory 501 and at least one processor 502. The at least one memory 501 stores a set of computer-executable instructions that, when executed by the at least one processor 502, perform an authorized method according to an exemplary embodiment of the present disclosure.

[0099] In exemplary embodiments of this disclosure, electronic device 500 may be a PC computer, tablet device, personal digital assistant, smartphone, or other device capable of executing the aforementioned set of instructions. Here, electronic device 500 is not necessarily a single electronic device, but may be a collection of any devices or circuits capable of executing the aforementioned instructions (or instruction sets) individually or in combination. Electronic device 500 may also be part of an integrated control system or system manager, or may be configured to interconnect with a portable electronic device locally or remotely (e.g., via wireless transmission) through an interface.

[0100] In electronic device 500, processor 502 may include a central processing unit (CPU), a graphics processing unit (GPU), a programmable logic device, a dedicated processor system, a microcontroller, or a microprocessor. By way of example and not limitation, processor may also include analog processors, digital processors, microprocessors, multi-core processors, processor arrays, network processors, etc.

[0101] The processor 502 can execute instructions or code stored in the memory 501, which can also store data. Instructions and data can also be sent and received over a network via a network interface device, which can employ any known transmission protocol.

[0102] The memory 501 may be integrated with the processor 502, for example, by arranging RAM or flash memory within an integrated circuit microprocessor. Alternatively, the memory 501 may include a separate device, such as an external disk drive, a storage array, or other storage device usable by any database system. The memory 501 and the processor 502 may be operatively coupled, or may communicate with each other, for example, via I / O ports, network connections, etc., enabling the processor 502 to read files stored in the memory.

[0103] In addition, electronic device 500 may also include a video display (such as a liquid crystal display) and a user interaction interface (such as a keyboard, mouse, touch input device, etc.). All components of electronic device 500 can be interconnected via a bus and / or network.

[0104] According to exemplary embodiments of this disclosure, a computer-readable storage medium including instructions is also provided, such as a memory 501 including instructions, which can be executed by a processor 502 of the device 500 to perform the above-described method. Optionally, the computer-readable storage medium may be a ROM, random access memory (RAM), CD-ROM, magnetic tape, floppy disk, and optical data storage device, etc.

[0105] According to exemplary embodiments of the present disclosure, a computer program product may also be provided, the computer program product including a computer program / instructions that, when executed by a processor, implement the authorized method according to exemplary embodiments of the present disclosure.

[0106] The above has been referred to Figures 1 to 5 A licensed method and apparatus according to exemplary embodiments of the present disclosure have been described. However, it should be understood that: Figure 4 The licensed devices and their units shown can be configured as software, hardware, firmware, or any combination thereof to perform a specific function. Figure 5 The electronic device shown is not limited to the components shown above, but some components may be added or removed as needed, and the above components may also be combined.

[0107] According to the authorization method and apparatus disclosed herein, by grouping multiple information resources for which authorization is requested and outputting a group authorization request page for each group, the problem of excessive authorization during the user authorization process is solved. By receiving the user's confirmation authorization instruction or rejection authorization instruction for each group authorization request page, and sending a user authorization credential for each information resource in the group corresponding to the group authorization request page that received the user's confirmation authorization instruction, the problem of all resource authorization failures due to the user rejecting one resource is avoided, thereby ultimately improving the user experience.

[0108] Other embodiments of this disclosure will readily occur to those skilled in the art upon consideration of the specification and practice of the invention disclosed herein. This application is intended to cover any variations, uses, or adaptations of this disclosure that follow the general principles of this disclosure and include common knowledge or customary techniques in the art not disclosed herein. The specification and examples are to be considered exemplary only, and the true scope and spirit of this disclosure are indicated by the following claims.

[0109] It should be understood that this disclosure is not limited to the precise structures described above and shown in the accompanying drawings, and various modifications and changes can be made without departing from its scope. The scope of this disclosure is limited only by the appended claims.

Claims

1. An authorization method, characterized in that, include: In response to receiving an authorization request from an application for multiple information resources, the multiple information resources are grouped based on a preset grouping strategy, wherein the grouping strategy includes at least one of the following: whether the grouping strategy is effective, the scope of the grouping strategy, the scope of the grouping strategy, and information resource grouping. For each group, a group authorization request page is output. The group authorization request page displays information about the group, replacing the corresponding multiple information resources. The group authorization request page is used to request the user to authorize and confirm all information resources included in the group. Receive confirmation or denial of authorization instructions from users for each group authorization request page; For each information resource in the group corresponding to the group authorization request page that has received the user's confirmation authorization instruction, send the user authorization credential.

2. The authorization method according to claim 1, characterized in that, The grouping of the multiple information resources based on a preset grouping strategy includes: The multiple information resources are matched with each of the preset grouping strategies, and the multiple information resources are grouped according to the matching results.

3. The authorization method according to claim 2, characterized in that, The step of matching the plurality of information resources with each of the preset grouping strategies, and grouping the plurality of information resources according to the matching results, includes: When the plurality of information resources include all information resources of the first strategy in the preset grouping strategy, all information resources of the first strategy included in the plurality of information resources are grouped together.

4. The authorization method according to claim 2, characterized in that, The step of matching the plurality of information resources with each of the preset grouping strategies, and grouping the plurality of information resources according to the matching results, includes: If the plurality of information resources only include a portion of the information resources in the first strategy of the preset grouping strategy, the portion of the information resources in the first strategy included in the plurality of information resources will not be grouped.

5. The authorization method according to claim 2, characterized in that, The step of matching the plurality of information resources with each of the preset grouping strategies, and grouping the plurality of information resources according to the matching results, includes: When the plurality of information resources include at least a portion of the information resources of the second strategy in the preset grouping strategy, the at least a portion of the information resources of the second strategy included in the plurality of information resources are grouped together.

6. The authorization method according to claim 2, characterized in that, The step of matching the plurality of information resources with each of the preset grouping strategies, and grouping the plurality of information resources according to the matching results, includes: When the plurality of information resources include at least a portion of the information resources of the third strategy in the preset grouping strategy, and there are no authorized information resources among the at least a portion of the information resources, the at least a portion of the information resources are grouped together.

7. The authorization method according to claim 2, characterized in that, The step of matching the plurality of information resources with each of the preset grouping strategies, and grouping the plurality of information resources according to the matching results, includes: If the plurality of information resources include at least a portion of the information resources of the third strategy in the preset grouping strategy, and if there are authorized information resources among the at least a portion of the information resources, the at least a portion of the information resources will not be grouped.

8. The authorization method according to claim 2, characterized in that, The step of matching the plurality of information resources with each of the preset grouping strategies, and grouping the plurality of information resources according to the matching results, includes: If the plurality of information resources include at least a portion of the information resources of the fourth strategy in the preset grouping strategy, and there are authorized information resources among the at least a portion of the information resources, the unauthorized information resources among the at least a portion of the information resources are grouped together.

9. The authorization method according to claim 1, characterized in that, The preset grouping strategy is based on the functional settings of information resources.

10. An authorization device, characterized in that, include: The resource grouping unit is configured to, in response to receiving an authorization request from an application for multiple information resources, group the multiple information resources based on a preset grouping strategy, wherein the grouping strategy includes at least one of the following: whether the grouping strategy is effective, the scope of the grouping strategy, the scope of the grouping strategy, and information resource grouping. The group request page output unit is configured to output a group authorization request page for each group. The group authorization request page displays information about the group, with the group replacing the corresponding plurality of information resources. The group authorization request page is used to request the user to authorize and confirm all information resources included in the group. The instruction receiving unit is configured to receive confirmation or denial instructions from the user for each group authorization request page; and The authorization credential sending unit is configured to send a user authorization credential to each information resource in the group corresponding to the group authorization request page that has received the user confirmation authorization instruction.

11. An electronic device, characterized in that, include: processor; Memory used to store the processor's executable instructions; The processor is configured to execute the instructions to implement the authorized method as described in any one of claims 1 to 9.

12. A computer-readable storage medium storing a computer program, characterized in that, When the computer program is executed by the processor of the electronic device, the electronic device performs the authorized method as described in any one of claims 1 to 9.