CN104283903A - Downloading method for files and device thereof - Google Patents
Downloading method for files and device thereof Download PDFInfo
- Publication number
- CN104283903A CN104283903A CN201310272313.8A CN201310272313A CN104283903A CN 104283903 A CN104283903 A CN 104283903A CN 201310272313 A CN201310272313 A CN 201310272313A CN 104283903 A CN104283903 A CN 104283903A
- Authority
- CN
- China
- Prior art keywords
- file
- cookie
- url
- download
- information
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 33
- 235000014510 cooky Nutrition 0.000 claims abstract description 163
- 238000012795 verification Methods 0.000 claims description 6
- 108010001267 Protein Subunits Proteins 0.000 claims description 2
- 238000000605 extraction Methods 0.000 claims description 2
- 238000010586 diagram Methods 0.000 description 4
- 230000000977 initiatory effect Effects 0.000 description 4
- 230000008569 process Effects 0.000 description 4
- 230000005540 biological transmission Effects 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 2
- 239000000284 extract Substances 0.000 description 2
- 230000003993 interaction Effects 0.000 description 2
- 238000012546 transfer Methods 0.000 description 2
- 230000008901 benefit Effects 0.000 description 1
- 230000008859 change Effects 0.000 description 1
- 230000006854 communication Effects 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 230000006870 function Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000002834 transmittance Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/06—Protocols specially adapted for file transfer, e.g. file transfer protocol [FTP]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/02—Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Information Transfer Between Computers (AREA)
Abstract
The invention is suitable for the technical field of Internet, and provides a downloading method for files and a device thereof. The downloading method comprises the steps of: when accessing of a downloading client to a downloading page of the file in a source website of the file is detected, returning cookie information which corresponds with the downloading page to the downloading client; receiving a downloading request of the downloading client to the file; generating a URL of the file according to the downloading request, wherein the URL carries checking information of the file, and the checking information comprises a cookie value in cookie information; and transmitting the URL to the downloading client, so that a first server transmits the file to the downloading client after a fact that the cookie information carried in an HTTP request contains the cookie value in the URL is checked. The downloading method of the invention prevents file downloading by the downloading client in a link stealing manner and improves network data safety.
Description
Technical field
The invention belongs to Internet technical field, particularly relate to a kind of method for down loading and device of file.
Background technology
Along with the development of Internet technology, user has got used to obtaining various types of file from the Internet, comprises film, video, music, picture and document etc.Usually, based on HTML (Hypertext Markup Language) (Hyper Text Transfer Protocol, HTTP), the download client such as browser provide the website of file download by access, the download link corresponding to file needing to download is got, to download corresponding file according to this download link from the Resource Server of this website from this website.Under above-mentioned file download mechanism, network there is robber's chain phenomenon, namely steal chain side and do not provide resource, but the download link of other websites is directly provided on the website of oneself, thus occupy the download bandwidth of the Resource Server of other websites, pageview and clicking rate have been gained by cheating in website for oneself, but compromise the interests of resource provider.
In order to avoid stealing the appearance of chain phenomenon, website is supplied at it identification information having imported this download client in download link of download client, the HTTP:User-Agent of such as this download client, if the Resource Server of this website finds that this download client is not mated with the identification information in the download link of its transmission, then Resource Server is refused to provide file download service for this download client.But for the download client of identical type identical version, its identification information is normally identical, that is, only need to adopt identical download client, just still can by stealing the mode download file of chain.
Summary of the invention
The embodiment of the present invention provides a kind of method for down loading of file, is intended to prevent download client from passing through to steal chain mode download file, improves the fail safe of network data.
The embodiment of the present invention is achieved in that a kind of method for down loading of file, comprising:
When the downloading page of file described in the source web that download client accesses described file being detected, return the cookie information corresponding with described downloading page to described download client;
Receive download client to the download request of described file;
Generate the URL of described file according to described download request, carry the check information of described file in described URL, described check information comprises the cookie value in described cookie information;
Described URL is sent to described download client, to make described download client, described URL and described cookie information are carried in HTTP request the first server sending to described website, and make described first server after verifying out in described HTTP request in the described cookie information of carrying the described cookie value contained in described URL, described file is sent to described download client.
Another object of the embodiment of the present invention is the method for down loading providing a kind of file, comprising:
Receive the HTTP request that download client sends, the URL of described file is carried in described HTTP request, described URL is generated by the second server of described file affiliated web site, include the check information of described file, described check information comprises the cookie value in the cookie information corresponding with the downloading page of file described in described website;
Verify the cookie information whether carrying in described HTTP request and comprise described cookie value;
After verifying out in described HTTP request the cookie information carrying and comprise described cookie value, described file is sent to described download client.
Another object of the embodiment of the present invention is the download apparatus providing a kind of file, comprising:
Cookie information returns unit, for when the downloading page of file described in the source web that download client accesses described file being detected, returns the cookie information corresponding with described downloading page to described download client;
Download request receiving element, for receiving the download request of download client to described file;
URL generation unit, for generating the URL of described file according to described download request, carries the check information of described file in described URL, described check information comprises the cookie value in described cookie information;
URL transmitting element, for described URL is sent to described download client, to make described download client, described URL and described cookie information are carried in HTTP request the first server sending to described website, and make described first server after verifying out in described HTTP request in the described cookie information of carrying the described cookie value contained in described URL, described file is sent to described download client.
Another object of the embodiment of the present invention is the download apparatus providing a kind of file, comprising:
HTTP request receiving element, for receiving the HTTP request that download client sends, the URL of described file is carried in described HTTP request, described URL is generated by the second server of described file affiliated web site, include the check information of described file, described check information comprises the cookie value in the cookie information corresponding with the downloading page of file described in described website;
Verification unit, for verifying the cookie information whether carrying in described HTTP request and comprise described cookie value;
File transmitting element, for after verifying out in described HTTP request the cookie information carrying and comprise described cookie value, sends to described download client by described file.
In embodiments of the present invention, resource as file provides website, download client is accessed cookie value that downloading page can get as check information, thus the URL of dynamically spanned file, the download request of download client can be verified out whether by normally downloading channel initiation according to this URL to make the Resource Server of this website, effectively prevent download client from passing through to steal chain mode download file thus, improve the fail safe of network data.
Accompanying drawing explanation
Fig. 1 be the method for down loading of the file that the embodiment of the present invention provides the network architecture diagram that is suitable for;
Fig. 2 is the realization flow figure of the method for down loading of the file that the embodiment of the present invention provides;
Fig. 3 is the specific implementation flow chart of the method for down loading S203 of the file that the embodiment of the present invention provides;
Fig. 4 is the realization flow figure of the method for down loading of the file that another embodiment of the present invention provides;
Fig. 5 is the realization flow figure of the method for down loading of the file that another embodiment of the present invention provides;
Fig. 6 is the interaction diagrams of the method for down loading of the file that the embodiment of the present invention provides;
Fig. 7 is the structured flowchart of the download apparatus of the file that the embodiment of the present invention provides.
Embodiment
In order to make object of the present invention, technical scheme and advantage clearly understand, below in conjunction with drawings and Examples, the present invention is further elaborated.Should be appreciated that specific embodiment described herein only in order to explain the present invention, be not intended to limit the present invention.
In embodiments of the present invention, resource as file provides website, download client is accessed cookie value that downloading page can get as check information, thus URL(uniform resource locator) (the Uniform Resource Locator of dynamically spanned file, URL), the download request of download client can be verified out whether by normally downloading channel initiation according to this URL to make the Resource Server of this website, effectively prevent download client from passing through to steal chain mode download file thus, improve the fail safe of network data.
Fig. 1 show the method for down loading of the file that the embodiment of the present invention provides the network architecture diagram that is suitable for, for convenience of explanation, illustrate only part related to the present embodiment.
With reference to Fig. 1, resource as file provides website 11, that includes first server 111 and second server 112, wherein, first server 111 is the Resource Server of this website 11, and it is for storing and managing the Internet resources that this website 11 has, simultaneously for providing file download service for download client 12, return corresponding file to download client 12, make download client 12 complete file download.And second server 112 is for providing web page access service for download client 12, according to the request of download client 12, return the file download link needed for corresponding web document or download client 12 download file to download client 12.
In the network architecture shown in Fig. 1, download client 12 can for browser client or other possess the client application of web browsing capabilities and file download ability, it runs on has on the computer equipment of network accessibility, wherein, computer equipment includes but not limited to desktop computer, notebook computer, mobile phone, panel computer etc.
In embodiments of the present invention, the downloading process of file is all carried out based on http protocol, the descriptor of file is shown in website 11 in the downloading page of file, and the downloading portal of file is provided, when download client 12 initiates the download request of file by this downloading portal to second server 112, second server 112 sends the URL of this file to download client 12, to make download client 12 by this URL to the file required for first server 111 request download.
Based on the network architecture shown in Fig. 1, below in conjunction with specific embodiment, the method for down loading of the file that the embodiment of the present invention provides is described in detail:
Fig. 2 shows the realization flow figure of the method for down loading of the file that the embodiment of the present invention provides, in the present embodiment, the second server 112 that the executive agent of flow process is website 11 in the network architecture shown in Fig. 1, details are as follows:
In S201, when the downloading page of file described in the source web that download client accesses described file being detected, return the cookie information corresponding with described downloading page to described download client.
Wherein, cookie information is generated by the server end of website, when the respective page of download client access websites, if this page pre-sets cookie information, server end then can send this cookie information to download client, this cookie information is saved in the text under certain catalogue local by download client, when next time, this download client asked same website again, this cookie information of preserving can be sent to the server end of this website by this download client again, to realize website to functions such as the identifications of user identity.
In the present embodiment, as the resource provider of file, website is prefixed cookie information in the downloading page of file, this cookie information is corresponding with the downloading page of this file, only have when download client accesses this downloading page, this cookie information just can be sent to download client by second server, and when accessing other pages under this website when download client, other cookie information may be returned, but the cookie information corresponding with this downloading page can not be returned.By the way, when next download client initiates HTTP request again to this website, the cookie information corresponding with this downloading page just can be carried in HTTP request and send, and the server end of website just can learn that download client accessed this downloading page.
In S202, receive download client to the download request of described file.
In the present embodiment, website provides the downloading portal of this file in the downloading page of file, this downloading portal can be illustrated in downloading page by modes such as the picture relevant to this file or words, after the click commands to this downloading portal being detected, download client sends a HTTP request to the second server of website, this HTTP request, as the download request of download client to this file, returns the URL of this file for asking second server to download client.
In S203, generate the URL of described file according to described download request, carry the check information of described file in described URL, described check information comprises the cookie value in described cookie information.
In the present embodiment, after the download request to this file receiving download client transmission, the check information of the path that second server is deposited according to this file in the first server of website and this file generates the URL of this file, wherein, namely check information includes in S201 the cookie value returned in the cookie information of download client.
Due to multiple different cookie value may be included in above-mentioned cookie information, as one embodiment of the present of invention, the cookie value in check information can be one or more cookie value in above-mentioned cookie information, then after S202, before S203, also comprise:
One or more cookie value described is determined at random in described cookie information.
That is, the cookie value comprised in the URL that second server generates at every turn can be dynamic change, can, for the string content in certain cookie value, also can be the string content in a few cookie values, thus ensures the randomness of the URL generated.
As one embodiment of the present of invention, check information in URL, except comprising above-mentioned cookie value, the term of validity of file can also be comprised, this term of validity is for identifying the download time limit of this file, can by first server for judging that whether this file current is beyond the download time limit, if exceed, then no longer for download client provides the download service of this file.
Such as; concerning some leave in network hard disc or high in the clouds for transfer file; deposit chronically in order to avoid file thus cause network storage resource nervous; usually the time limit can be downloaded for these files arrange one; if beyond this download time limit, server can automatically delete these files, does not reoffer the download service of these files; for above-mentioned situation, the term of validity of file namely can be used to identify the download time limit of this file.
Meanwhile, the check information in URL obviously can also comprise the other guides such as the index information of file, and whether the file examining download client request download for server end is consistent with the URL of its transmission, and this is no longer going to repeat them.
As one embodiment of the present of invention, in order to prevent the URL generated be blocked in communication process or steal, can the check information in URL be encrypted, as shown in Figure 3:
In S301, the cryptographic algorithm according to presetting is encrypted described check information.
Wherein, the cryptographic algorithm preset can be that website is preset, or the cryptographic algorithm appointed between first server and second server, include but not limited to Advanced Encryption Standard (Advanced Encryption Standard, AES) algorithm or DEA (Data Encryption Algorithm, DEA) etc.
In S302, the described check information in the path and encryption of leaving described first server according to described file generates the URL of described file.
That is, the check information after the original URL of file in interpolation after encryption, just generates the URL of this file needing to return to download client.Such as, the URL of generation can be as follows:
http://ftn.qq.com/73fc22af6ecc959ae1a973c70b16cd8518679beff267cd01c3b82e81725e357ce4be250b92c20d93244f4c5db5ef229ce0058ba60183a8593f7bfe9f9eb34596,
Wherein, " ftn.qq.com " leaves the path of first server in for file, and the part after " http://ftn.qq.com/ " is then the check information of the file after the cryptographic algorithm encryption by presetting.
By above-mentioned cipher mode, if steal chain one side to have got above-mentioned URL by improper channel, but because it cannot crack out the cookie value of wherein carrying, therefore, it also cannot forge by the mode arranging this cookie value on its page the illusion that download client accessed the downloading page of the originating website, stop robber's chain phenomenon thus up hill and dale, further increasing the fail safe of network data.
In S204, described URL is sent to described download client, to make described download client, described URL and described cookie information are carried in HTTP request the first server sending to described website, and make described first server after verifying out in described HTTP request in the described cookie information of carrying the described cookie value contained in described URL, described file is sent to described download client.
In the present embodiment, after the URL generated in S203 is sent to download client by second server, according to http protocol, the cookie information that the second server received in this URL and S201 returns can be carried in HTTP request by download client, and according to the routing information provided in this URL, this HTTP request is sent to first server, to make first server after verifying out in the cookie information of carrying in this HTTP request the cookie value contained in this URL, file is sent to download client.The concrete verification mode of first server will be described in detail in subsequent embodiment, not repeat them here.
It should be noted that, in embodiments of the present invention, the cookie information arranged in downloading page can possess certain life cycle, and within this life cycle, cookie information is effective, and exceeding this cookie information will be eliminated life cycle.Such as, the life cycle of cookie information is set to " 0 " or negative value, like this when closing download client, just remove this cookie information at once, after this download client can not carry identical cookie information again in the HTTP request sending to first server, and the term of validity of the URL that download client is got is only once.So, in fact, always the cookie information that second server returns to each different download client is at every turn changing, and stopped the appearance of stealing chain phenomenon thus further, improve the fail safe of network data.
Corresponding to the realization flow of the method for down loading second server of aforementioned document, Fig. 4 shows the realization flow of the method for down loading of the file that another embodiment of the present invention provides, in the present embodiment, the first server 111 that the executive agent of flow process is website 11 in the network architecture shown in Fig. 1, details are as follows:
In S401, receive the HTTP request that download client sends, the URL of described file is carried in described HTTP request, described URL is generated by the second server of described file affiliated web site, include the check information of described file, described check information comprises the cookie value in the cookie information corresponding with the downloading page of file described in described website.
In S402, verify the cookie information whether carrying in described HTTP request and comprise described cookie value.
In S403, after verifying out in described HTTP request the cookie information carrying and comprise described cookie value, described file is sent to described download client.
Principle according to Fig. 2 embodiment of the present invention, if download client accessed this file provides website downloading page in its resource, it is the download request initiated by downloading channel normally, then send in the HTTP request of first server in this download client, the cookie information of the cookie value comprised in URL must be carried, in this case, first server thinks that the request of download client is effective, then corresponding file is sent to download client; And if download client gets URL's by the mode of robber's chain, it did not access corresponding downloading page, then it sends in the HTTP request of first server and may not carry cookie information, or the cookie value do not comprised in the cookie information of carrying in this URL, in this case, first server assert that this download client is the mode request download file by stealing chain, then refuse the request of download client, reach the object of door chain thus.
As one embodiment of the present of invention, when the check information in URL also comprises the term of validity of file, in S403, after verifying out in described HTTP request the cookie information carrying and comprise described cookie value, first server also needs to judge that whether described file is beyond downloading the time limit according to the term of validity of described file, when downloading the time limit described in described file does not exceed, described file is sent to described download client by first server again.
Such as, the term of validity cut-off of file is to 24:00 on June 10th, 2013, if download client on June 11st, 2013 1:00 to have sent to first server and download the HTTP request of this file, then first server is by the check information in URL, judge current time beyond the downloaded time limit of this file, first server no longer provides the download service of this file to download client.
As one embodiment of the present of invention, when first server and second server appoint cryptographic algorithm, and after check information in URL is encrypted according to the cryptographic algorithm that this is preset, after S401, before S402, as shown in Figure 5, also comprise:
S501, according to described default cryptographic algorithm, is decrypted described check information.
In S502, from the described check information after deciphering, extract described cookie value.
In the present embodiment, key and the algorithm of deciphering check information are all appointed by between first server and second server, and third party cannot learn, prevents URL be cracked in transmittance process or steal thus, improves the fail safe of network data.
Fig. 6 shows the interaction diagrams of the method for down loading of the file that the embodiment of the present invention provides, and details are as follows:
1, the downloading page of download client access file.
2, second server returns the cookie information corresponding with this downloading page to download client.
3, download client sends the download request of file to second server.
4, second server generates the URL of this file according to this download request, carries the check information of this file in this URL, comprises the cookie value in described cookie information.
5, URL is sent to download client by second server.
6, URL and described cookie information are carried in HTTP request and send to first server by download client.
7, the cookie information comprising described cookie value whether is carried in first server verification HTTP request.
8, after verifying out in HTTP request the cookie information carrying and comprise described cookie value, described file is sent to described download client by first server.
In embodiments of the present invention, resource as file provides website, download client is accessed cookie value that downloading page can get as check information, thus the URL of dynamically spanned file, the download request of download client can be verified out whether by normally downloading channel initiation according to this URL to make the Resource Server of this website, effectively prevent download client from passing through to steal chain mode download file thus, improve the fail safe of network data.
Fig. 7 shows the structured flowchart of the download apparatus of the file that the embodiment of the present invention provides, and this device can lay respectively in the first server shown in Fig. 1 and second server, for running the method for down loading of the file described in Fig. 2 to Fig. 5 embodiment of the present invention.For convenience of explanation, illustrate only part related to the present embodiment.
With reference to Fig. 7, in second server, this device comprises:
Cookie information returns unit 71, when the downloading page of file described in the source web that download client accesses described file being detected, returns the cookie information corresponding with described downloading page to described download client.
Download request receiving element 72, receives download client to the download request of described file.
URL generation unit 73, generates the URL of described file according to described download request, carry the check information of described file in described URL, and described check information comprises the cookie value in described cookie information.
URL transmitting element 74, described URL is sent to described download client, to make described download client, described URL and described cookie information are carried in HTTP request the first server sending to described website, and make described first server after verifying out in described HTTP request in the described cookie information of carrying the described cookie value contained in described URL, described file is sent to described download client.
Alternatively, described check information also comprises the term of validity of described file.
Alternatively, described URL generation unit 73 comprises:
Encryption sub-unit operable, the cryptographic algorithm according to presetting is encrypted described check information.
Generate subelement, the described check information in the path and encryption of leaving described first server according to described file generates the URL of described file.
Alternatively, described check information comprises one or more cookie value in described cookie information,
Described device also comprises:
Cookie value determining unit, determines one or more cookie value described at random in described cookie information.
In first server, this device comprises:
HTTP request receiving element 75, receive the HTTP request that download client sends, the URL of described file is carried in described HTTP request, described URL is generated by the second server of described file affiliated web site, include the check information of described file, described check information comprises the cookie value in the cookie information corresponding with the downloading page of file described in described website.
Verification unit 76, verifies the cookie information whether carrying in described HTTP request and comprise described cookie value.
File transmitting element 77, after verifying out in described HTTP request the cookie information carrying and comprise described cookie value, sends to described download client by described file.
Alternatively, described check information also comprises the term of validity of described file,
Described file transmitting element 77 comprises:
According to the term of validity of described file, judgment sub-unit, after verifying out in described HTTP request the cookie information carrying and comprise described cookie value, judges that whether described file is beyond downloading the time limit.
Send subelement, when the time limit can be downloaded described in described file does not exceed, described file is sent to described download client.
Alternatively, described check information is encrypted according to the cryptographic algorithm preset,
Described device also comprises:
Decryption unit, according to described default cryptographic algorithm, is decrypted described check information.
Extraction unit, extracts described cookie value from the described check information after deciphering.
In embodiments of the present invention, resource as file provides website, download client is accessed cookie value that downloading page can get as check information, thus the URL of dynamically spanned file, the download request of download client can be verified out whether by normally downloading channel initiation according to this URL to make the Resource Server of this website, effectively prevent download client from passing through to steal chain mode download file thus, improve the fail safe of network data.
The foregoing is only preferred embodiment of the present invention, not in order to limit the present invention, all any amendments done within the spirit and principles in the present invention, equivalent replacement and improvement etc., all should be included within protection scope of the present invention.
Claims (14)
1. a method for down loading for file, is characterized in that, comprising:
When the downloading page of file described in the source web that download client accesses described file being detected, return the cookie information corresponding with described downloading page to described download client;
Receive download client to the download request of described file;
Generate the uniform resource position mark URL of described file according to described download request, carry the check information of described file in described URL, described check information comprises the cookie value in described cookie information;
Described URL is sent to described download client, to make described download client, described URL and described cookie information are carried in HTTP request the first server sending to described website, and make described first server after verifying out in described HTTP request in the described cookie information of carrying the described cookie value contained in described URL, described file is sent to described download client.
2. the method for claim 1, is characterized in that, described check information also comprises the term of validity of described file.
3. the method for claim 1, is characterized in that, the described URL generating described file according to described download request comprises:
Cryptographic algorithm according to presetting is encrypted described check information;
The described check information in the path and encryption of leaving described first server according to described file generates the URL of described file.
4. the method as described in any one of claims 1 to 3, is characterized in that, described check information comprises one or more cookie value in described cookie information,
After described reception download client is to the download request of described file, described generate the URL of described file according to described download request before, also comprise:
One or more cookie value described is determined at random in described cookie information.
5. a method for down loading for file, is characterized in that, comprising:
Receive the HTTP request that download client sends, the uniform resource position mark URL of described file is carried in described HTTP request, described URL is generated by the second server of described file affiliated web site, include the check information of described file, described check information comprises the cookie value in the cookie information corresponding with the downloading page of file described in described website;
Verify the cookie information whether carrying in described HTTP request and comprise described cookie value;
After verifying out in described HTTP request the cookie information carrying and comprise described cookie value, described file is sent to described download client.
6. method as claimed in claim 5, it is characterized in that, described check information also comprises the term of validity of described file,
Described after verifying out in described HTTP request the cookie information carrying and comprise described cookie value, send to described download client to comprise described file:
After verifying out in described HTTP request the cookie information carrying and comprise described cookie value, judge that whether described file is beyond downloading the time limit according to the term of validity of described file;
When the time limit can be downloaded described in described file does not exceed, described file is sent to described download client.
7. the method as described in claim 5 or 6, is characterized in that, described check information is encrypted according to the cryptographic algorithm preset,
After the HTTP request that described reception download client sends, before whether carrying the cookie information comprising described cookie value in the described HTTP request of described verification, also comprise:
According to described default cryptographic algorithm, described check information is decrypted;
Described cookie value is extracted from the described check information after deciphering.
8. a download apparatus for file, is characterized in that, comprising:
Cookie information returns unit, for when the downloading page of file described in the source web that download client accesses described file being detected, returns the cookie information corresponding with described downloading page to described download client;
Download request receiving element, for receiving the download request of download client to described file;
URL generation unit, for generating the uniform resource position mark URL of described file according to described download request, carries the check information of described file in described URL, described check information comprises the cookie value in described cookie information;
URL transmitting element, for described URL is sent to described download client, to make described download client, described URL and described cookie information are carried in HTTP request the first server sending to described website, and make described first server after verifying out in described HTTP request in the described cookie information of carrying the described cookie value contained in described URL, described file is sent to described download client.
9. device as claimed in claim 8, it is characterized in that, described check information also comprises the term of validity of described file.
10. device as claimed in claim 8, it is characterized in that, described URL generation unit comprises:
Encryption sub-unit operable, for being encrypted described check information according to the cryptographic algorithm preset;
Generate subelement, the described check information for the path and encryption of leaving described first server according to described file generates the URL of described file.
11. devices as described in any one of claim 8 ~ 10, it is characterized in that, described check information comprises one or more cookie value in described cookie information,
Described device also comprises:
Cookie value determining unit, for determining one or more cookie value described at random in described cookie information.
The download apparatus of 12. 1 kinds of files, is characterized in that, comprising:
HTTP request receiving element, for receiving the HTTP request that download client sends, the uniform resource position mark URL of described file is carried in described HTTP request, described URL is generated by the second server of described file affiliated web site, include the check information of described file, described check information comprises the cookie value in the cookie information corresponding with the downloading page of file described in described website;
Verification unit, for verifying the cookie information whether carrying in described HTTP request and comprise described cookie value;
File transmitting element, for after verifying out in described HTTP request the cookie information carrying and comprise described cookie value, sends to described download client by described file.
13. devices as claimed in claim 12, it is characterized in that, described check information also comprises the term of validity of described file,
Described transmitting element comprises:
According to the term of validity of described file, judgment sub-unit, for after verifying out in described HTTP request the cookie information carrying and comprise described cookie value, judges that whether described file is beyond downloading the time limit;
Send subelement, during for the time limit can be downloaded described in not exceeding when described file, described file is sent to described download client.
14. devices as described in claim 12 or 13, is characterized in that, described check information is encrypted according to the cryptographic algorithm preset,
Described device also comprises:
Decryption unit, for according to described default cryptographic algorithm, is decrypted described check information;
Extraction unit, for extracting described cookie value from the described check information after deciphering.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310272313.8A CN104283903B (en) | 2013-07-01 | 2013-07-01 | The method for down loading and device of file |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201310272313.8A CN104283903B (en) | 2013-07-01 | 2013-07-01 | The method for down loading and device of file |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN104283903A true CN104283903A (en) | 2015-01-14 |
| CN104283903B CN104283903B (en) | 2019-04-12 |
Family
ID=52258385
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201310272313.8A Active CN104283903B (en) | 2013-07-01 | 2013-07-01 | The method for down loading and device of file |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN104283903B (en) |
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104680063A (en) * | 2015-03-02 | 2015-06-03 | 魅族科技(中国)有限公司 | Information interception method and terminal |
| CN104994445A (en) * | 2015-06-30 | 2015-10-21 | 广东欧珀移动通信有限公司 | Method and device for playing multi-media files |
| CN106453448A (en) * | 2015-08-06 | 2017-02-22 | 北京奇虎科技有限公司 | Method for downloading target file and device thereof |
| CN106549909A (en) * | 2015-09-17 | 2017-03-29 | 阿里巴巴集团控股有限公司 | A kind of authority checking method and apparatus |
| CN107517252A (en) * | 2017-08-22 | 2017-12-26 | 福建中金在线信息科技有限公司 | A kind of file download control method, apparatus and system |
| CN107528865A (en) * | 2016-06-21 | 2017-12-29 | 平安科技(深圳)有限公司 | The method for down loading and system of file |
| CN107579903A (en) * | 2017-07-11 | 2018-01-12 | 深圳市中易通安全芯科技有限公司 | A kind of image information safe transmission method and system based on mobile device |
| CN111314403A (en) * | 2018-12-12 | 2020-06-19 | 阿里巴巴集团控股有限公司 | Method and device for checking resource consistency |
| CN112118466A (en) * | 2020-09-21 | 2020-12-22 | 北京字节跳动网络技术有限公司 | Copyright protection method, device, system, equipment and medium for multimedia information |
| CN113283227A (en) * | 2021-05-31 | 2021-08-20 | 山东浪潮通软信息科技有限公司 | File export method and device and computer readable medium |
| CN113612678A (en) * | 2021-07-15 | 2021-11-05 | 中标软件有限公司 | Safety protection method for downloading and using mail attachment |
| CN113709530A (en) * | 2021-09-01 | 2021-11-26 | 北京奇艺世纪科技有限公司 | Resource downloading method, system, electronic equipment and storage medium |
| CN113961785A (en) * | 2021-10-22 | 2022-01-21 | 中国科学院软件研究所 | Method for dynamically indexing and storing Internet open-source software data |
| CN114282186A (en) * | 2021-12-17 | 2022-04-05 | 北京荣达天下信息科技有限公司 | Method and system for safely exporting large file data |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1801824A (en) * | 2006-01-16 | 2006-07-12 | 北京北方烽火科技有限公司 | Anti-theft chain method for WEB service |
| EP1776820A1 (en) * | 2004-03-12 | 2007-04-25 | THOMSON Licensing | Automated remote site downloading on a geographic drive |
| CN101815060A (en) * | 2009-02-23 | 2010-08-25 | 未序网络科技(上海)有限公司 | Anti-stealing link method of internet content delivery network |
| CN102025749A (en) * | 2011-01-18 | 2011-04-20 | 中国联合网络通信集团有限公司 | Anti-theft method of mobile streaming media service |
| CN103117897A (en) * | 2013-01-25 | 2013-05-22 | 北京星网锐捷网络技术有限公司 | Method and related device for detecting messages including Cookie information |
-
2013
- 2013-07-01 CN CN201310272313.8A patent/CN104283903B/en active Active
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1776820A1 (en) * | 2004-03-12 | 2007-04-25 | THOMSON Licensing | Automated remote site downloading on a geographic drive |
| CN1801824A (en) * | 2006-01-16 | 2006-07-12 | 北京北方烽火科技有限公司 | Anti-theft chain method for WEB service |
| CN101815060A (en) * | 2009-02-23 | 2010-08-25 | 未序网络科技(上海)有限公司 | Anti-stealing link method of internet content delivery network |
| CN102025749A (en) * | 2011-01-18 | 2011-04-20 | 中国联合网络通信集团有限公司 | Anti-theft method of mobile streaming media service |
| CN103117897A (en) * | 2013-01-25 | 2013-05-22 | 北京星网锐捷网络技术有限公司 | Method and related device for detecting messages including Cookie information |
Cited By (19)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104680063A (en) * | 2015-03-02 | 2015-06-03 | 魅族科技(中国)有限公司 | Information interception method and terminal |
| CN104680063B (en) * | 2015-03-02 | 2019-03-15 | 魅族科技(中国)有限公司 | A kind of information intercepting method and terminal |
| CN104994445A (en) * | 2015-06-30 | 2015-10-21 | 广东欧珀移动通信有限公司 | Method and device for playing multi-media files |
| CN104994445B (en) * | 2015-06-30 | 2018-09-11 | 广东欧珀移动通信有限公司 | The playback method and device of multimedia file |
| CN106453448A (en) * | 2015-08-06 | 2017-02-22 | 北京奇虎科技有限公司 | Method for downloading target file and device thereof |
| CN106549909A (en) * | 2015-09-17 | 2017-03-29 | 阿里巴巴集团控股有限公司 | A kind of authority checking method and apparatus |
| CN106549909B (en) * | 2015-09-17 | 2020-04-24 | 阿里巴巴集团控股有限公司 | Authorization verification method and device |
| CN107528865B (en) * | 2016-06-21 | 2020-07-28 | 平安科技(深圳)有限公司 | File downloading method and system |
| CN107528865A (en) * | 2016-06-21 | 2017-12-29 | 平安科技(深圳)有限公司 | The method for down loading and system of file |
| CN107579903A (en) * | 2017-07-11 | 2018-01-12 | 深圳市中易通安全芯科技有限公司 | A kind of image information safe transmission method and system based on mobile device |
| CN107517252A (en) * | 2017-08-22 | 2017-12-26 | 福建中金在线信息科技有限公司 | A kind of file download control method, apparatus and system |
| CN111314403A (en) * | 2018-12-12 | 2020-06-19 | 阿里巴巴集团控股有限公司 | Method and device for checking resource consistency |
| CN112118466A (en) * | 2020-09-21 | 2020-12-22 | 北京字节跳动网络技术有限公司 | Copyright protection method, device, system, equipment and medium for multimedia information |
| CN113283227A (en) * | 2021-05-31 | 2021-08-20 | 山东浪潮通软信息科技有限公司 | File export method and device and computer readable medium |
| CN113612678A (en) * | 2021-07-15 | 2021-11-05 | 中标软件有限公司 | Safety protection method for downloading and using mail attachment |
| CN113709530A (en) * | 2021-09-01 | 2021-11-26 | 北京奇艺世纪科技有限公司 | Resource downloading method, system, electronic equipment and storage medium |
| CN113709530B (en) * | 2021-09-01 | 2023-03-07 | 北京奇艺世纪科技有限公司 | Resource downloading method, system, electronic equipment and storage medium |
| CN113961785A (en) * | 2021-10-22 | 2022-01-21 | 中国科学院软件研究所 | Method for dynamically indexing and storing Internet open-source software data |
| CN114282186A (en) * | 2021-12-17 | 2022-04-05 | 北京荣达天下信息科技有限公司 | Method and system for safely exporting large file data |
Also Published As
| Publication number | Publication date |
|---|---|
| CN104283903B (en) | 2019-04-12 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104283903A (en) | Downloading method for files and device thereof | |
| CN107517179B (en) | Authentication method, device and system | |
| CN103957436B (en) | A kind of video anti-stealing link method based on OTT business | |
| CN101267299B (en) | A method and system for securely display data on the webpage | |
| CN104954386B (en) | A kind of network anti-hijacking method and device | |
| CN106878265B (en) | Data processing method and device | |
| US20160277194A1 (en) | Method for certifying android client application by local service unit | |
| CN104378379B (en) | A kind of digital content encrypted transmission method, equipment and system | |
| CN104113552A (en) | Platform authorization method, platform server side, application client side and system | |
| CN105721411A (en) | Method for preventing hotlinking, server and client terminalfor preventing hotlinking | |
| CN106559405B (en) | Portal authentication method and equipment | |
| CN103634399B (en) | Method and device for realizing cross-domain data transmission | |
| CN103763308A (en) | Method and device for having access to webpage safely and downloading data through intelligent terminal | |
| CN107959660A (en) | A kind of static file access method and device based on Nginx | |
| CN103561040A (en) | File downloading method and system | |
| CN103401836A (en) | Method and device used for judging whether webpage is hijacked by ISP (internet service provider) or not | |
| JP6894518B2 (en) | Passing credentials via parameters | |
| CN105354451A (en) | Access authentication method and system | |
| CN105915494A (en) | Anti-stealing-link method and system | |
| EP3242444A1 (en) | Service processing method and device | |
| CN107026828B (en) | Anti-stealing-link method based on Internet cache and Internet cache | |
| CN108259457A (en) | A kind of WEB authentication methods and device | |
| CN102523220A (en) | Web authentication method, and client and access layer device used for web authentication | |
| CN106470186B (en) | A method of accessing third party's resource in a manner of jumping | |
| Wang et al. | A framework for formal analysis of privacy on SSO protocols |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |