CN107395638A - The method transferred based on cell-phone number as platform account authority - Google Patents
The method transferred based on cell-phone number as platform account authority Download PDFInfo
- Publication number
- CN107395638A CN107395638A CN201710757106.XA CN201710757106A CN107395638A CN 107395638 A CN107395638 A CN 107395638A CN 201710757106 A CN201710757106 A CN 201710757106A CN 107395638 A CN107395638 A CN 107395638A
- Authority
- CN
- China
- Prior art keywords
- keeper
- authority
- platform
- former
- phone number
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 43
- 238000012546 transfer Methods 0.000 claims abstract description 92
- 238000012790 confirmation Methods 0.000 claims abstract description 16
- 238000010276 construction Methods 0.000 claims abstract description 3
- 238000007726 management method Methods 0.000 claims description 17
- 230000006870 function Effects 0.000 claims description 11
- 230000005540 biological transmission Effects 0.000 claims description 7
- 230000004048 modification Effects 0.000 claims description 6
- 238000012986 modification Methods 0.000 claims description 6
- 230000008569 process Effects 0.000 claims description 6
- 230000004044 response Effects 0.000 claims description 5
- 238000012217 deletion Methods 0.000 claims description 3
- 230000037430 deletion Effects 0.000 claims description 3
- 230000000875 corresponding effect Effects 0.000 description 10
- 238000005516 engineering process Methods 0.000 description 4
- 230000008901 benefit Effects 0.000 description 3
- 230000000977 initiatory effect Effects 0.000 description 3
- 230000008859 change Effects 0.000 description 2
- 238000010586 diagram Methods 0.000 description 2
- 235000013399 edible fruits Nutrition 0.000 description 2
- 230000032683 aging Effects 0.000 description 1
- 230000004888 barrier function Effects 0.000 description 1
- 230000002596 correlated effect Effects 0.000 description 1
- 230000009977 dual effect Effects 0.000 description 1
- 230000003203 everyday effect Effects 0.000 description 1
- 230000005055 memory storage Effects 0.000 description 1
- 238000012795 verification Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/101—Access control lists [ACL]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/08—Network architectures or network communication protocols for network security for authentication of entities
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/18—Network architectures or network communication protocols for network security using different networks or channels, e.g. using out of band channels
Landscapes
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Mobile Radio Communication Systems (AREA)
Abstract
The invention discloses a kind of method transferred based on cell-phone number as platform account authority, including Step 1: construction platform universal retrieval service centre;Step 2: former keeper is initiated when authority transfers application, it is necessary to first pass around login password confirmation, the keeper sent again by platform operates identification short message, and replys and identified, two crucial authentication steps;Step 3: former keeper and quasi- keeper are identified;Step 4: behind the dependency rule of chained address generation and quasi- keeper's clickthrough address, platform end obtains the service logic of quasi- keeper associated personal information;Step 5: after the completion of authority is transferred, former keeper and new management person are given respectively and sends an authority transfer completion notice short message.It is of the invention to ensure that authority transfers safe and reliable performance well, successfully introduced Internet cell phone as the prominent features of account in traditional forms of enterprises's level management PC platforms.
Description
Technical field
The present invention relates to computer technology and WEB management system security technology area, for using cell-phone number as unique login
Voucher, keeper change, the transfer of super keepe identity or authority Hand-over techniques implementation method.
Background technology
With the popularization of mobile call, mobile phone, which has become in each adult's life, to carry out exchanging indispensable work
Tool.Cell-phone number turns into the ID of mobile phone with its uniqueness, and cell-phone number briefly is easy to remember with its numeral, and use range is wide, and frequency is high,
Operator eliminates the limitation of cell-phone number region simultaneously, realizes the theoretical feasible of people's No.1 companion's all one's life.So cell-phone number is
Through surmounting identification card number as everyone second ID used in everyday.Web bank's certification, ecommerce, individual mailbox, meeting
Member's account etc. is all the common platform of cell-phone number registration, and former social platform also passes through mobile phone by oneself issuing account and being transitioned into
Number it is personal account (QQ to wechat).This is all due to that uniqueness and the build-in attribute of cell-phone number are the deepest as user's memory
The string number at quarter.
Exactly because cell-phone number widely uses internet platform, passage time proves that it is safe and reliable, has allowed it
Progressively it is generalized to many 2B enterprise-levels management platform or electric business platform login account keepers and often uses account.Reduce and be in the past
Secured account is excessively not easy to remember at random, password oversize the shortcomings of easily obscuring, while account is short by cell-phone number and mobile phone
Letter is bound, and facilitates the identification of authority, and password is given for change, and authority such as authorizes at the making for the platform administrator of great convenience
With the realization interacted with platform feature.
Although cell-phone number possesses many internets conveniently as platform account, Yi Jie, a variety of advantages such as safety.But because
Personal account is different from for platform account use, platform management is accomplished that corporate business or the management of Determinadon, will not
Shifted with the transfer of individual will, be provided simultaneously with the characteristic changed with the variation of personnel.But cell-phone number be because
People and it is different, with people move.So the advantage of cell-phone number internet account number should be utilized, while to solve platform account not modification,
Therefore it is badly in need of the contradiction for wanting a kind of method to can solve the problem that therebetween, realizes that cell-phone number reliably may be used as platform account number safety
Energy.
The content of the invention
The present invention discloses supports WEB platform to apply class administrator right hand-over method more, and mobile phone is associated by cell-phone number, short
Letter sends former administrator right identification, and quasi- keeper receives accreditation, and platform power is transferred between realizing different cell-phone numbers.
Emphasis of the present invention is solved to be the authority transfer between super keepe, and the authority of SUB ADMINISTRATOR is reclaimed and authorized, can
To carry out associative operation by super keepe, so the present invention not discusses.
A kind of method transferred based on cell-phone number as platform account authority, scene are limited to enterprise-level management platform pipe
Reason person's personal mobile phone number is used as platform login account, and former administrator right transferred in quasi- keeper, by associative operation by platform
Account changes the personal mobile phone number for the keeper that is defined;
Specifically comprise the following steps:
Step 1: the planning characteristic of function, framework based on enterprise-level management platform, in the service of construction platform universal retrieval
The heart, for managing the authentication process replied or link determination to former keeper is either accurate, and arrange the platform in short message content
Token generates and resolution rules;
Step 2: former keeper is initiated when authority transfers application, it is necessary to login password confirmation be first passed around, again by flat
The keeper that platform is sent operates identification short message, and replys and identified, two crucial authentication steps;
Step 3: to former keeper identification be by existing platform send short message on the basis of carry out reply identification,
And keeper's identification is directed at, it is to carry out two kinds of identification not by clicking on the progress associative operation of the respective links in platform short message
Come to carry out identity identification to former keeper and quasi- keeper respectively with rule;
Step 4: sending chained address uniqueness in short message for quasi- keeper, and tied up with corresponding quasi- keeper individual
Determine (one-to-one corresponding), after the dependency rule of chained address generation and quasi- keeper's clickthrough address, platform end obtains quasi- management
The service logic of member associated personal information;
Step 5: after the completion of authority is transferred, one authority of former keeper and new management person transmission is given respectively and has been transferred
Into notifying messages, while platform some page that platform end notifies that former keeper stopping by relevant art, force former pipe
Reason person automatically exits from logging in, and plays the related description that frame prompts former administrator right to transfer.
Further scheme is:
The enterprise-level management platform establishes authority and transfers submodule, and authority transfers submodule and is pertaining only to super keepe institute
Have, super keepe transfers submodule by authority and carries out being used as the transfer of platform account authority based on cell-phone number.
Further scheme is:
Authority transfers application can only be accurate by existing now and the effective super keepe of authority passes through platform and actively initiated
Keeper can only passively receive, it is impossible to actively apply.
Further scheme is:
Authority is transferred application and entered as follows:
Former keeper fills in the cell-phone number of new quasi- keeper in platform, authority transfer input frame, and clicks on determination, puts down
Platform prompting is needed to input the platform modification logging person of being managed legitimacy authentication for the first time, and after authenticating successfully, square access entitlements are moved
Application is handed over, is specially:
The former keeper of step 4.1 will receive a confirmation short message, prompt former keeper that he/her carries out authority transfer,
Please reply related content is prompted to be determined accordingly in the stipulated time;Remarks:Former keeper's short message sending cell-phone number is by platform
Its account (cell-phone number) is directly taken to be transmitted, without manual intervention;
Step 4.2 will give quasi- keeper's mobile phone sending permission to move after platform receives confirmation short message that former keeper replys
Interlinkage connects, and quasi- keeper opens link, is that designed authority transfers the page;Quasi- keeper clicks on after related notice is read
It is determined that input initialization password.
Further scheme is:
Replied for the former keeper of step 4.1 and confirm short message, it is up regularly to pull SMS platform by timer for platform end
Short message, content and cell-phone number corresponding to acquisition, go message to send during buffer obtains by cell-phone number and obtain transmission content, institute
It is not simple buffered message content to state buffer, is to integrate timer function, is set in pre-stored message content expired
Time, i.e., if user for a long time do not reply or more than the time reply after, content deletion out of date, it is impossible to obtained by cell-phone number
Take;Short message buffer memory principle is that the form memory mobile phone number of key-value pair (key, value) is key, short message content value
Value, short message content can be some random digits, send difference every time, redis etc. can be used to possess the interior of timer function
Memory is deposited to be stored.
Further scheme is:
Step 4.2 determines short message link, because it is fixed to transfer the page, but is moved to distinguish authorities different every time
Hand over, thus can be kept up with behind the short message chained address sent with get request methods a string of random strings (numeral or letter,
The two has concurrently), when former keeper's clickthrough, platform obtains link random string, and be key by character string below
It is worth the cell-phone number that corresponding former keeper is obtained in message sends buffer, if account is present, illustrates to move at the appointed time
Hand over, if account is not present, illustrate to transfer time-out, and return result to mobile phone terminal webpage, remind user to go platform to send out again
Play authority Handoff Request;Wherein using random string as key values, non-cell-phone number, because request determines that the page is last safety
Barrier, and determine that the chained address of the page is relatively disclosed request address, so by sending parameter behind chained address every time
Unique, reliability that randomness confirms to ensure authority to transfer and the characteristics of be not easy to be copied.
Further scheme is:
The Row control and flow progress of response are set in platform power transfers whole process, when former keeper is in platform
When initiating authority transfer, authority handoff procedure enters " authority, which is transferred, to be initiated ", now authority handover procedure 4.1, as former keeper
After the short message connection confirmation received is clicked on mobile phone, flow enters and enters step 4.2 " during authority is transferred ";
When flow is " authority, which is transferred, to be initiated ", such as former keeper does not receive short message, can initiate authority transfer again
Request;If when flow is entered in authority transfer, it is impossible to initiate authority again and transfer application, be so to prevent authority
Transfer and repeat to initiate or maliciously transfer multiple different people to simultaneously, i.e., the same time can only initiate to transfer a people to;
After quasi- keeper receives authority reception determination short message, after linking determination, flow access entitlements transfer completion, such as
The quasi- keeper of fruit is for a long time without clickthrough determination or the expired just click of link is carried out, and now authority handoff procedure enters
Enter authority transfer unsuccessfully to show;When step, which goes to authority, transfers failure, former keeper can initiate authority transfer again.
Compared with prior art, the present invention combines authority correlated characteristic in traditional forms of enterprises's platform, it is proposed that this method, very well
Solve by the Internet, applications by individual service account -- cell-phone number, which is used as existing for enterprise-level platform management account, asks
Topic, that is, make use of mobile phone account, the multiple advantages shown in the Internet, applications:Safety, easily memory, easily verification etc., together
When solve and personal account is used as enterprise-level platform account personnel changes the shortcomings that account is dynamic with people, by providing multilayer
The identification of personnel characteristics' authority is transferred, and provides the ageing of relevancy determination operations, ensure that authority transfer safety can well
The performance leaned on, successfully introduced Internet cell phone as the prominent features of account in traditional forms of enterprises's level management PC platforms.
Brief description of the drawings
Fig. 1 is the flow chart of the inventive method;
Fig. 2 is the network diagram of the inventive method;
Fig. 3 is operation flow schematic diagram in the inventive method;
Embodiment
Transferred below in conjunction with the accompanying drawings with specific embodiment to proposed by the present invention as platform account authority in cell-phone number
Method elaborates.
A kind of method transferred based on cell-phone number as platform account authority disclosed by the invention, is comprised the following steps:
Step 1: needing to establish authority transfer submodule function based on application platform, and transfer to establish for authority and transfer
Step, it is roughly divided into:Successfully/failure is transferred in application --- in transfer ---.If application platform is that possess more authorities, the submodule
Block, which is pertaining only to super keepe, to be owned.
Step 2: authority transfer application only can only be by existing now and the effective super keepe of authority passes through platform master
Dynamic to initiate, the quasi- keeper (hereinafter referred to as quasi- keeper) newly taken over can only passively receive, it is impossible to actively apply.
Because the scope of the invention is identified in being transferred based on cell-phone number for the platform power of account, not only require existing
The cell-phone number of keeper be it is legal effectively, and for I be used cell-phone number or one of, while require quasi- keeper receive into
Must also possess same condition for the cell-phone number of account executive.
Step 3: authority transfers application, authority transfer is initiated when former keeper transfers function by platform power, is patrolled in detail
It is as follows to collect details;
For former keeper in platform, authority, which is transferred, fills in new cell-phone number in input frame (quasi- keeper's cell-phone number), and clicks on true
Fixed, platform prompting needs to input the platform modification logging person of being managed legitimacy authentication for the first time, after authenticating successfully, square right of access
Limit transfers application;
Step 4: after former keeper submits authority application, handoff procedure is put into authority transfer, and authority, which is transferred, to be included
Following aspect:
4.1 former keepers will receive a confirmation short message, prompt former keeper that he/her carries out authority transfer, please exist
Stipulated time prompting accordingly is replied related content and is determined.Remarks:Former keeper's short message sending cell-phone number is direct by platform
Its account (cell-phone number) is taken to be transmitted, without manual intervention.
4.2 after platform receives the confirmation short message that former keeper replys, will give quasi- keeper's mobile phone sending permission to transfer chain
Connect, quasi- keeper opens link, is that designed authority transfers the page.Quasi- keeper clicks on and determined after related notice is read,
Input initialization password.
Step 5 platform processes
5.1 reply confirmation short message for 4.1 former keepers, and it is up regularly to pull SMS platform by timer for platform end
Short message, content and cell-phone number corresponding to acquisition, go message to send during buffer obtains by cell-phone number and obtain transmission content,
Here, buffer is not simple buffered message content, and it is to integrate timer function, is set in pre-stored message content
Expired time, i.e., if user for a long time do not reply or more than the time reply after, content deletion out of date, it is impossible to pass through mobile phone
Number obtain.Short message buffer memory principle is that the form memory mobile phone number of key-value pair (key, value) is key, and short message content is
Value values, short message content can be some random digits, send difference every time, redis etc. can be used to possess timer function
Memory storage stored.
5.2, for 4.2 determination short message links, because it is fixed to transfer the page, but are each different authority of difference
Transfer, so a string of random strings (numeral or words can be kept up with behind the short message chained address sent with get request methods
Mother, the two has concurrently), when former keeper's clickthrough, platform obtains link random string, and be by character string below
Key values obtain the cell-phone number of corresponding former keeper in message sends buffer, if account is present, illustrate at the appointed time
Transfer, if account is not present, illustrate to transfer time-out, and return result to mobile phone terminal webpage, remind user to remove platform from newly
Initiate authority Handoff Request.Herein for message to send buffer with 5.1 be same buffer.
It is using random string as key values, rather than cell-phone number, because request determines that the page is most to be different from 5.1 in 5.2
Safety curtain afterwards, and determine that the chained address of the page is relatively disclosed request address, so being grounded by each send chain
The characteristics of parameter is unique behind location, and randomness transfers the reliability confirmed and be not easy to be copied to ensure authority.
Step 6 Row control
The Row control and flow progress of response are set in platform power transfers whole process, when former keeper is in platform
When initiating authority transfer, authority handoff procedure enters " authority, which is transferred, to be initiated ", now authority handover procedure 4.1, as former keeper
After the short message connection confirmation received is clicked on mobile phone, flow enters and enters step 4.2 " during authority is transferred ".
When flow is " authority, which is transferred, to be initiated ", such as former keeper does not receive short message, can initiate authority transfer again
Request.If when flow is entered in authority transfer, it is impossible to initiate authority again and transfer application, be so to prevent authority
Transfer and repeat to initiate or maliciously transfer multiple different people to simultaneously, i.e., the same time can only initiate to transfer a people to.
After quasi- keeper receives authority reception determination short message, after linking determination, flow access entitlements transfer completion, such as
The quasi- keeper of fruit is for a long time without clickthrough determination or the expired just click of link is carried out, and now authority handoff procedure enters
Enter authority transfer unsuccessfully to show.When step, which goes to authority, transfers failure, former keeper can be according to some in step 4, weight
New authority of initiating is transferred.
With one, more specifically the present invention is described in further detail for embodiment below.
A kind of method transferred based on cell-phone number as platform account authority, as shown in Figure 1, Figure 2, Figure 3 shows, including following step
Suddenly:
Step P1, authority is set to transfer functional module in platform, and the functional module authority only has super pipe with observability
Reason person possesses, invisible to SUB ADMINISTRATOR.
Step P2, former keeper initiates authority and transferred, and inputs the cell-phone number as account corresponding to quasi- keeper, it is determined that
When, under system prompt, former keeper's login password is inputted as whether being that my feature authenticates, after authenticating successfully, original manages
Member will receive confirmation short message, the mobile phone account of short message sending obtained automatically by platform super keepe registration mobile phone account rather than
Artificial input, illustrate that carrying out related reply determines according to short message, it is whole most important one of platform safety management that authority, which is transferred,
Link, to prevent the artificial duplicity of non-administrator obtains platform super keepe authority from first passing through password so being provided with P2
Again by the authentication protection of SMS confirmation dual command person feature.
Step P3, after P2 Central Plains keeper, which replys, determines short message, platform will give quasi- keeper to send platform power receiving
Short message, short message are made up of two parts, and Part I is operation explanatory note, and Part II is a chained address.Said in word
The bright middle quasi- keeper of prompting opens chained address in the stipulated time, into the webpage of response, clicks on confirming button and receives the platform
Administration authority, and fill in the login password of new platform, the create-rule of chained address be existing page URL addresses followed by
A upper random parameter, the random parameter sent every time is all different, and at platform end by the parameter quasi- keeper corresponding with transmission
One-to-one corresponding is stored, and when quasi- keeper's clickthrough, platform obtains random parameter by accessing to link, then passes through parameter
The cell-phone number for obtaining corresponding quasi- keeper within the storage system carries out authority transfer.
Step P4, after the completion of P3, platform will give former keeper to send a description difference with quasi- keeper respectively
Short message;Notify former administrator right to transfer success, notify quasi- keeper to obtain platform power, and inform standard in short message
Keeper's platform entry address.Platform submits message to the former keeper that platform is used by websocket technologies simultaneously
The webpage of response, make its compulsory withdrawal, and eject the explanation that authority has been transferred.
Step P5, there are various forms of SMS confirmation functions in step P2 and P3, the two is all to possess the expired time limit,
The difference is that if former keeper does not confirm for a long time in P2, platform power handoff procedure is transferred automatically into authority to fail, and
Think that non-former keeper's operation automatically exits from logging in.If quasi- keeper does not click on confirmation for a long time, more than effective time in P3
Afterwards, authority handoff procedure is automatically into the expired link of transfer, and sends short message to former keeper and illustrate that authority transfer is expired, if
Transfer is needed please to initiate related prompting again.
Although reference be made herein to invention has been described for explanatory embodiment of the invention, and above-described embodiment is only this hair
Bright preferable embodiment, embodiments of the present invention are simultaneously not restricted to the described embodiments, it should be appreciated that people in the art
Member can be designed that a lot of other modifications and embodiment, and these modifications and embodiment will fall in principle disclosed in the present application
Within scope and spirit.
Claims (7)
- A kind of 1. method transferred based on cell-phone number as platform account authority, it is characterised in that:Scene is limited to enterprise-level management platform and moved by the use of keeper's personal mobile phone number as platform login account, former administrator right Quasi- keeper is met at, platform account is changed to the personal mobile phone number for the keeper that is defined by associative operation;Specifically comprise the following steps:Step 1: the planning characteristic of function, framework based on enterprise-level management platform, construction platform universal retrieval service centre, For managing the authentication process replied or link determination to former keeper is either accurate, and arrange the platform token in short message content Generation and resolution rules;Step 2: former keeper initiates when authority transfers application to confirm, it is necessary to first pass around login password, sent out again by platform The keeper sent operates identification short message, and replys and identified, two crucial authentication steps;Step 3: be to former keeper identification by carrying out reply identification on the basis of sending short message in existing platform, it is and right Quasi- keeper's identification, it is to carry out the different rule of two kinds of identification by clicking on the progress associative operation of the respective links in platform short message Then come to carry out identity identification to former keeper and quasi- keeper respectively;Step 4: sending chained address uniqueness in short message for quasi- keeper, and bound with corresponding quasi- keeper individual, chain After being grounded dependency rule and the quasi- keeper's clickthrough address of location generation, platform end obtains quasi- keeper associated personal information's Service logic;Step 5: after the completion of authority is transferred, it is logical that former one authority transfer completion of keeper and new management person transmission is given respectively Know short message, while platform some page that platform end notifies that former keeper stopping by relevant art, force former keeper Automatically exit from logging in, and play the related description that frame prompts former administrator right to transfer.
- 2. the method transferred according to claim 1 based on cell-phone number as platform account authority, it is characterised in that:The enterprise-level management platform establishes authority and transfers submodule, and authority transfer submodule, which is pertaining only to super keepe, to be owned, Super keepe transfers submodule by authority and carries out being used as the transfer of platform account authority based on cell-phone number.
- 3. the method transferred according to claim 2 based on cell-phone number as platform account authority, it is characterised in that:Authority transfer application can only by exist now and the effective super keepe of authority pass through platform actively initiate, quasi- management Member can only passively receive, it is impossible to actively apply.
- 4. the method transferred according to claim 3 based on cell-phone number as platform account authority, it is characterised in that:Authority is transferred application and entered as follows:Former keeper fills in the cell-phone number of new quasi- keeper in platform, authority transfer input frame, and clicks on determination, and platform carries Showing needs to input the platform modification logging person of being managed legitimacy authentication for the first time, and after authenticating successfully, square access entitlements transfer Shen Please, it is specially:The former keeper of step 4.1 will receive a confirmation short message, prompt former keeper that he/her carries out authority transfer, please exist Stipulated time prompting accordingly is replied related content and is determined;Remarks:Former keeper's short message sending cell-phone number is direct by platform Its account is taken to be transmitted, without manual intervention;Step 4.2 will give quasi- keeper's mobile phone sending permission to transfer chain after platform receives confirmation short message that former keeper replys Connect, quasi- keeper opens link, is that designed authority transfers the page;Quasi- keeper clicks on and determined after related notice is read, Input initialization password.
- 5. the method transferred according to claim 4 based on cell-phone number as platform account authority, it is characterised in that:Replied for the former keeper of step 4.1 and confirm short message, it is up short regularly to pull SMS platform by timer for platform end Letter, content and cell-phone number corresponding to acquisition, go message to send during buffer obtains by cell-phone number and obtain transmission content, it is described Buffer is not simple buffered message content, is to integrate timer function, when setting expired in pre-stored message content Between, i.e., if user for a long time do not reply or more than the time reply after, content deletion out of date, it is impossible to obtained by cell-phone number Take;Short message buffer memory principle is that the form memory mobile phone number of key-value pair (key, value) is key, short message content value Value, short message content can be some random digits, send difference every time, redis etc. can be used to possess the interior of timer function Memory is deposited to be stored.
- 6. the method transferred according to claim 4 based on cell-phone number as platform account authority, it is characterised in that:Step 4.2 determines short message link, because it is fixed to transfer the page, but is transferred to distinguish authorities different every time, institute So that behind the short message chained address of transmission a string of random strings can be kept up with get request methods, when former keeper's clickthrough, Platform obtains link random string below, and is that key values obtain corresponding former pipe in message sends buffer by character string The cell-phone number of reason person, if account is present, illustrate to transfer at the appointed time, if account is not present, illustrate to transfer time-out, and Mobile phone terminal webpage is returned result to, reminds user to go platform to initiate authority Handoff Request again;Wherein using random string as Key values, non-cell-phone number, because request determines that the page is last safety curtain, and determine that the chained address of the page is relatively public The request address opened, so by sending the unique of parameter behind chained address every time, randomness ensures that authority transfers what is confirmed Reliability and the characteristics of being not easy to be copied.
- 7. the method transferred according to claim 5 or 6 based on cell-phone number as platform account authority, it is characterised in that:The Row control and flow progress of response are set in platform power transfers whole process, when former keeper initiates in platform When authority is transferred, authority handoff procedure enters " authority, which is transferred, to be initiated ", now authority handover procedure 4.1, when former keeper is in hand After the short message connection confirmation received is clicked on machine, flow enters and enters step 4.2 " during authority is transferred ";When flow is " authority, which is transferred, to be initiated ", such as former keeper does not receive short message, can initiate authority Handoff Request again; If when flow is entered in authority transfer, it is impossible to initiate authority again and transfer application, be so to prevent authority from transferring Repeat to initiate or malice transfers multiple different people to simultaneously, i.e., the same time can only initiate to transfer a people to;After quasi- keeper receives authority reception determination short message, after linking determination, flow access entitlements transfer completion, if accurate Keeper just clicks on without progress clickthrough determination or link are expired for a long time, now authority handoff procedure right of access Limit is transferred and unsuccessfully shown;When step, which goes to authority, transfers failure, former keeper can initiate authority transfer again.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710757106.XA CN107395638A (en) | 2017-08-29 | 2017-08-29 | The method transferred based on cell-phone number as platform account authority |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710757106.XA CN107395638A (en) | 2017-08-29 | 2017-08-29 | The method transferred based on cell-phone number as platform account authority |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107395638A true CN107395638A (en) | 2017-11-24 |
Family
ID=60346144
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710757106.XA Pending CN107395638A (en) | 2017-08-29 | 2017-08-29 | The method transferred based on cell-phone number as platform account authority |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107395638A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114510729A (en) * | 2021-12-31 | 2022-05-17 | 西安即刻易用网络科技有限公司 | Organization security transfer method of enterprise-level application system |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8170588B2 (en) * | 2008-11-13 | 2012-05-01 | Apple Inc. | Contact information updating via SMS |
| CN103095659A (en) * | 2011-11-03 | 2013-05-08 | 北京神州泰岳软件股份有限公司 | Account login method and system in internet |
| CN105141460A (en) * | 2015-09-09 | 2015-12-09 | 上海幻电信息科技有限公司 | Multi-platform based unified account system |
-
2017
- 2017-08-29 CN CN201710757106.XA patent/CN107395638A/en active Pending
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8170588B2 (en) * | 2008-11-13 | 2012-05-01 | Apple Inc. | Contact information updating via SMS |
| CN103095659A (en) * | 2011-11-03 | 2013-05-08 | 北京神州泰岳软件股份有限公司 | Account login method and system in internet |
| CN105141460A (en) * | 2015-09-09 | 2015-12-09 | 上海幻电信息科技有限公司 | Multi-platform based unified account system |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN114510729A (en) * | 2021-12-31 | 2022-05-17 | 西安即刻易用网络科技有限公司 | Organization security transfer method of enterprise-level application system |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN104364790B (en) | system and method for implementing multi-factor authentication | |
| CN104158824B (en) | Genuine cyber identification authentication method and system | |
| CN110401655A (en) | Access control right management system based on user and role | |
| CN106209912A (en) | Access authorization methods, device and system | |
| CN107342992A (en) | A kind of System right management method, apparatus and computer-readable recording medium | |
| TW200820716A (en) | Method and apparatus for providing trusted single sign-on access to applications and internet-based services | |
| CN107274532A (en) | The temporary password gate control system that encryption parameter dynamically updates | |
| DE202009019188U1 (en) | Authentication of secure transactions | |
| CN103986584A (en) | Double-factor identity verification method based on intelligent equipment | |
| CN103986734B (en) | Authentication management method and authentication management system applicable to high-security service system | |
| CN105187431A (en) | Log-in method, server, client and communication system for third party application | |
| CN109462595A (en) | Data-interface secure exchange method based on RestFul | |
| CN110417820A (en) | Processing method, device and the readable storage medium storing program for executing of single-node login system | |
| CN107070894A (en) | A kind of software integrating method based on enterprise's cloud service platform | |
| CN106101054A (en) | The single-point logging method of a kind of multisystem and centralized management system | |
| CN106549909A (en) | A kind of authority checking method and apparatus | |
| CN107770192A (en) | Identity authentication method and computer-readable recording medium in multisystem | |
| CN109495514A (en) | Role access control system and method based on edge terminal | |
| CN106357629A (en) | Intelligent terminal identity authentication and single sign-on system and method based on digital certificate | |
| CN108092988A (en) | Unaware Certificate Authority network system and method based on dynamic creation temporary password | |
| US20080263642A1 (en) | Systems and methods for a computer network security system using dynamically generated passwords | |
| CN108200039A (en) | Unaware authentication and authorization system and method based on dynamic creation temporary account password | |
| CN105046125A (en) | A Hierarchical System-Based Application Access Method for OA System | |
| CN102571874A (en) | On-line audit method and device in distributed system | |
| US20080263646A1 (en) | Systems and methods for a computer network security system using dynamically generated passwords |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20171124 |