[go: up one dir, main page]

CN111833066A - A method, device and system for account authorization - Google Patents

A method, device and system for account authorization Download PDF

Info

Publication number
CN111833066A
CN111833066A CN202010623046.4A CN202010623046A CN111833066A CN 111833066 A CN111833066 A CN 111833066A CN 202010623046 A CN202010623046 A CN 202010623046A CN 111833066 A CN111833066 A CN 111833066A
Authority
CN
China
Prior art keywords
account
authorization
management platform
information
request
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN202010623046.4A
Other languages
Chinese (zh)
Inventor
刘晓琳
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
China Construction Bank Corp
Original Assignee
China Construction Bank Corp
CCB Finetech Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by China Construction Bank Corp, CCB Finetech Co Ltd filed Critical China Construction Bank Corp
Priority to CN202010623046.4A priority Critical patent/CN111833066A/en
Publication of CN111833066A publication Critical patent/CN111833066A/en
Pending legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING OR CALCULATING; COUNTING
    • G06QINFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
    • G06Q20/00Payment architectures, schemes or protocols
    • G06Q20/38Payment protocols; Details thereof
    • G06Q20/40Authorisation, e.g. identification of payer or payee, verification of customer or shop credentials; Review and approval of payers, e.g. check credit lines or negative lists
    • G06Q20/401Transaction verification
    • G06Q20/4014Identity check for transactions

Landscapes

  • Business, Economics & Management (AREA)
  • Engineering & Computer Science (AREA)
  • Accounting & Taxation (AREA)
  • Computer Security & Cryptography (AREA)
  • Finance (AREA)
  • Strategic Management (AREA)
  • Physics & Mathematics (AREA)
  • General Business, Economics & Management (AREA)
  • General Physics & Mathematics (AREA)
  • Theoretical Computer Science (AREA)
  • Financial Or Insurance-Related Operations Such As Payment And Settlement (AREA)

Abstract

本发明公开了一种账户授权的方法、装置及系统,涉及计算机技术领域。该方法的一具体实施方式包括:获取第一账户发起的授权请求,所述授权请求指示了第二账户的账户信息,所述第一账户和所述第二账户的类型不同;根据所述第二账户的账户信息,确定所述第二账户对应的管理平台,并将所述授权请求发送给所述管理平台,以使所述管理平台生成所述第二账户对应的授权凭证;根据所述授权凭证,为所述第一账户授权关于所述第二账户的使用权限。该实施方式实现了不同账户之间的线上授权,提高了账户授权效率,并提高了用户体验。

Figure 202010623046

The invention discloses a method, device and system for account authorization, and relates to the technical field of computers. A specific implementation of the method includes: acquiring an authorization request initiated by a first account, where the authorization request indicates account information of a second account, and the types of the first account and the second account are different; account information of the second account, determine the management platform corresponding to the second account, and send the authorization request to the management platform, so that the management platform generates the authorization certificate corresponding to the second account; according to the An authorization credential, which authorizes the first account to use the right to use the second account. This embodiment implements online authorization between different accounts, improves account authorization efficiency, and improves user experience.

Figure 202010623046

Description

一种账户授权的方法、装置及系统A method, device and system for account authorization

技术领域technical field

本发明涉及计算机技术领域,尤其涉及一种账户授权的方法、装置及系统。The present invention relates to the field of computer technologies, and in particular, to a method, device and system for account authorization.

背景技术Background technique

随着全球经济的发展,不同用户可能分别在不同地区/机构注册有多个金融账户。With the development of the global economy, different users may have multiple financial accounts registered in different regions/institutions.

不同金融账户的币种和交易权限等可能有所不同,为了实现不同地区/机构的金融账户的通用,用户需要去金融机构的线下柜台办理金融账户之间的授权。也就是说,每当用户有账户的授权需求时,均需至该账户所属地区和机构的线下柜台办理,这一方面增加的柜台工作人员的工作量,降低账户授权效率,另一方面也降低了用户体验。The currency and transaction authority of different financial accounts may be different. In order to realize the common use of financial accounts in different regions/institutions, users need to go to the offline counters of financial institutions for authorization between financial accounts. That is to say, whenever a user has an account authorization requirement, they need to go to the offline counter of the region and institution to which the account belongs. This increases the workload of the counter staff and reduces the account authorization efficiency. Degraded user experience.

发明内容SUMMARY OF THE INVENTION

有鉴于此,本发明实施例提供一种账户授权方法、装置及系统,实现了不同账户之间的线上授权,而无需用户去线下柜台办理账户的授权业务,从而提高了账户授权效率,并提高了用户体验。并且,还通过线上系统实现了不同所属地/所属机构的多个账户的信息管理,从而便于多账户的统一管理,进而提高了账户的管理效率。In view of this, the embodiments of the present invention provide an account authorization method, device and system, which realizes online authorization between different accounts without requiring the user to go to the offline counter to handle the account authorization business, thereby improving the efficiency of account authorization, And improve the user experience. In addition, the information management of multiple accounts of different affiliations/organizations is also realized through the online system, thereby facilitating the unified management of multiple accounts, thereby improving the management efficiency of the accounts.

为实现上述目的,根据本发明实施例的一个方面,提供了一种账户授权的方法。To achieve the above object, according to an aspect of the embodiments of the present invention, a method for account authorization is provided.

本发明实施例的一种账户授权的方法包括:获取第一账户发起的授权请求,所述授权请求指示了第二账户的账户信息,所述第一账户和所述第二账户的类型不同;An account authorization method according to an embodiment of the present invention includes: acquiring an authorization request initiated by a first account, where the authorization request indicates account information of a second account, and the types of the first account and the second account are different;

根据所述第二账户的账户信息,确定所述第二账户对应的管理平台,并将所述授权请求发送给所述管理平台,以使所述管理平台生成所述第二账户对应的授权凭证;According to the account information of the second account, determine the management platform corresponding to the second account, and send the authorization request to the management platform, so that the management platform can generate the authorization certificate corresponding to the second account ;

根据所述授权凭证,为所述第一账户授权关于所述第二账户的使用权限。According to the authorization credential, the first account is authorized to use the authorization for the second account.

可选地,所述授权请求还指示了所述第一账户的账户信息;Optionally, the authorization request further indicates account information of the first account;

根据所述第一账户的账户信息以及所述第二账户的账户信息,确定所述第一账户与所述第二账户是否具有关联关系;According to the account information of the first account and the account information of the second account, determine whether the first account has an associated relationship with the second account;

当所述第一账户与所述第二账户具有关联关系时,将所述授权请求发送给所述管理平台。When the first account has an associated relationship with the second account, the authorization request is sent to the management platform.

可选地,当所述第一账户和所述第二账户对应与同一个账户管理树时,确定所述第一账户和所述第二账户具有关联关系;所述账户管理树包括多个账户分别对应的节点,所述多个账户对应的用户属于同一企业或具有法定关系。Optionally, when the first account and the second account correspond to the same account management tree, it is determined that the first account and the second account have an associated relationship; the account management tree includes multiple accounts The corresponding nodes respectively, the users corresponding to the multiple accounts belong to the same enterprise or have a legal relationship.

可选地,还包括:Optionally, also include:

根据所述第一账户的账户信息,验证所述第一账户的合法性,当所述第一账户合法时,确定所述第一账户与所述第二账户是否具有关联关系。According to the account information of the first account, the validity of the first account is verified, and when the first account is valid, it is determined whether the first account has an associated relationship with the second account.

可选地,还包括:Optionally, also include:

将第一账户的账户信息发送给所述管理平台,以使所述管理平台对应存储所述第一账户的账户信息和所述授权凭证。The account information of the first account is sent to the management platform, so that the management platform correspondingly stores the account information of the first account and the authorization certificate.

可选地,所述授权凭证是所述管理平台在确定出所述第二账户处于正常交易状态的情况下生成的。Optionally, the authorization certificate is generated by the management platform when it is determined that the second account is in a normal transaction state.

可选地,所述第一账户为境内账户,所述第二账户为境外账户;Optionally, the first account is a domestic account, and the second account is an overseas account;

可选地,所述第一账户为境外账户,所述第二账户为境内账户。Optionally, the first account is an overseas account, and the second account is a domestic account.

为实现上述目的,根据本发明实施例的又一方面,提供了一种账户授权的装置。To achieve the above object, according to another aspect of the embodiments of the present invention, an account authorization device is provided.

本发明实施例的一种账户授权的装置包括:请求获取模块、确定模块和授权模块;其中,An account authorization device according to an embodiment of the present invention includes: a request acquisition module, a determination module, and an authorization module; wherein,

所述请求获取模块,用于获取第一账户发起的授权请求,所述授权请求指示了第二账户的账户信息,所述第一账户和所述第二账户的类型不同;The request obtaining module is configured to obtain an authorization request initiated by a first account, where the authorization request indicates account information of a second account, and the types of the first account and the second account are different;

所述确定模块,根据所述第二账户的账户信息,确定所述第二账户对应的管理平台,并将所述授权请求发送给所述管理平台,以使所述管理平台生成所述第二账户对应的授权凭证;The determining module determines the management platform corresponding to the second account according to the account information of the second account, and sends the authorization request to the management platform, so that the management platform generates the second account. The authorization certificate corresponding to the account;

所述授权模块,用于根据所述授权凭证,为所述第一账户授权关于所述第二账户的使用权限。The authorization module is configured to authorize the first account with the use right of the second account according to the authorization certificate.

为实现上述目的,根据本发明实施例的又一方面,提供了一种账户授权的系统。To achieve the above object, according to another aspect of the embodiments of the present invention, an account authorization system is provided.

本发明实施例的一种账户授权的系统包括:管理平台和上述任一账户授权的装置;An account authorization system according to an embodiment of the present invention includes: a management platform and any of the above account authorization devices;

所述管理平台,用于根据所述账户授权的装置发送的授权请求,对第二账户进行验证,当所述第二账户处于正常状态时,生成所述第二账户对应的授权凭证,并将所述授权凭证发送给所述账户授权的装置。The management platform is configured to verify the second account according to the authorization request sent by the account authorization device, and when the second account is in a normal state, generate an authorization credential corresponding to the second account, and assign the authorization certificate to the second account. The authorization credential is sent to the account authorization device.

可选地,所述管理平台,用于根据所述第二账户的历史交易信息,确定所述第二账户是否处于正常状态。Optionally, the management platform is configured to determine whether the second account is in a normal state according to historical transaction information of the second account.

为实现上述目的,根据本发明实施例的又一方面,提供了一种账户授权的电子设备。To achieve the above object, according to another aspect of the embodiments of the present invention, an electronic device for account authorization is provided.

本发明实施例的一种账户授权的电子设备包括:一个或多个处理器;存储装置,用于存储一个或多个程序,当所述一个或多个程序被所述一个或多个处理器执行,使得所述一个或多个处理器实现本发明实施例的一种账户授权的方法。An electronic device for account authorization according to an embodiment of the present invention includes: one or more processors; and a storage device for storing one or more programs, when the one or more programs are executed by the one or more processors The execution causes the one or more processors to implement an account authorization method according to an embodiment of the present invention.

为实现上述目的,根据本发明实施例的再一方面,提供了一种计算机可读存储介质。To achieve the above object, according to yet another aspect of the embodiments of the present invention, a computer-readable storage medium is provided.

本发明实施例的一种计算机可读存储介质,其上存储有计算机程序,所述程序被处理器执行时实现本发明实施例的一种账户授权的方法。A computer-readable storage medium according to an embodiment of the present invention stores a computer program thereon, and when the program is executed by a processor, an account authorization method according to an embodiment of the present invention is implemented.

上述发明中的一个实施例具有如下优点或有益效果:在获取到第一账户发起的授权请求后,根据该授权请求指示的第二账户的账户信息,确定第二账户对应的管理平台,然后将授权请求发送给管理平台,使得该管理平台生成第二账户对应的授权凭证,然后根据该授权凭证为第一账户授权关于第二账户的使用权限,由此实现了第一账户和第二账户之间的线上授权,而无需用户去线下柜台办理账户的授权业务,从而提高了账户授权效率,并提高了用户体验。One embodiment of the above invention has the following advantages or beneficial effects: after obtaining the authorization request initiated by the first account, the management platform corresponding to the second account is determined according to the account information of the second account indicated by the authorization request, and then the The authorization request is sent to the management platform, so that the management platform generates an authorization credential corresponding to the second account, and then authorizes the first account with the right to use the second account according to the authorization credential, thereby realizing the relationship between the first account and the second account. Online authorization between users without the need for users to go to the offline counter to handle the authorization business of the account, thereby improving the efficiency of account authorization and improving the user experience.

上述的非惯用的可选方式所具有的进一步效果将在下文中结合具体实施方式加以说明。Further effects of the above non-conventional alternatives will be described below in conjunction with specific embodiments.

附图说明Description of drawings

附图用于更好地理解本发明,不构成对本发明的不当限定。其中:The accompanying drawings are used for better understanding of the present invention and do not constitute an improper limitation of the present invention. in:

图1是根据本发明实施例的一种账户授权的方法的主要步骤的示意图;1 is a schematic diagram of main steps of a method for account authorization according to an embodiment of the present invention;

图2是根据本发明实施例的另一种账户授权的方法的主要步骤的示意图;FIG. 2 is a schematic diagram of main steps of another account authorization method according to an embodiment of the present invention;

图3是根据本发明实施例的一种账户授权的系统的主要模块的示意图;3 is a schematic diagram of main modules of an account authorization system according to an embodiment of the present invention;

图4是根据本发明实施例的一种账户授权的装置的主要模块的示意图;4 is a schematic diagram of main modules of an account authorization device according to an embodiment of the present invention;

图5是根据本发明实施例的另一种账户授权的系统的主要模块的示意图;5 is a schematic diagram of the main modules of another account authorization system according to an embodiment of the present invention;

图6是本发明实施例可以应用于其中的示例性系统架构图;FIG. 6 is an exemplary system architecture diagram to which an embodiment of the present invention may be applied;

图7是适于用来实现本发明实施例的终端设备或服务器的计算机系统的结构示意图。FIG. 7 is a schematic structural diagram of a computer system suitable for implementing a terminal device or a server according to an embodiment of the present invention.

具体实施方式Detailed ways

以下结合附图对本发明的示范性实施例做出说明,其中包括本发明实施例的各种细节以助于理解,应当将它们认为仅仅是示范性的。因此,本领域普通技术人员应当认识到,可以对这里描述的实施例做出各种改变和修改,而不会背离本发明的范围和精神。同样,为了清楚和简明,以下的描述中省略了对公知功能和结构的描述。Exemplary embodiments of the present invention are described below with reference to the accompanying drawings, which include various details of the embodiments of the present invention to facilitate understanding and should be considered as exemplary only. Accordingly, those of ordinary skill in the art will recognize that various changes and modifications of the embodiments described herein can be made without departing from the scope and spirit of the invention. Also, descriptions of well-known functions and constructions are omitted from the following description for clarity and conciseness.

需要指出的是,在不冲突的情况下,本发明的实施例以及实施例中的技术特征可以相互结合。It should be pointed out that the embodiments of the present invention and the technical features in the embodiments may be combined with each other without conflict.

图1是根据本发明实施例的一种账户授权的方法的主要步骤的示意图。FIG. 1 is a schematic diagram of main steps of a method for account authorization according to an embodiment of the present invention.

如图1所示,本发明实施例的一种账户授权的方法主要包括以下步骤:As shown in FIG. 1, an account authorization method according to an embodiment of the present invention mainly includes the following steps:

步骤S101:获取第一账户发起的授权请求,所述授权请求指示了第二账户的账户信息,所述第一账户和所述第二账户的类型不同。Step S101: Acquire an authorization request initiated by a first account, where the authorization request indicates account information of a second account, and the types of the first account and the second account are different.

步骤S102:根据所述第二账户的账户信息,确定所述第二账户对应的管理平台,并将所述授权请求发送给所述管理平台,以使所述管理平台生成所述第二账户对应的授权凭证。Step S102: Determine the management platform corresponding to the second account according to the account information of the second account, and send the authorization request to the management platform, so that the management platform generates the corresponding second account authorization credentials.

步骤S103:根据所述授权凭证,为所述第一账户授权关于所述第二账户的使用权限。Step S103 : Authorize the first account with the use right of the second account according to the authorization certificate.

其中,当第一账户和第二账户的所属地、所属机构、币种和/或交易权限有所不同时,即说明第一账户和第二账户的类型不同。例如,当第一账户和第二账户属于同一金融机构,但第一账户和第二账户的所属地不同时,即说明第一账户和第二账户的类型不同。Wherein, when the location, institution, currency and/or transaction authority of the first account and the second account are different, it means that the types of the first account and the second account are different. For example, when the first account and the second account belong to the same financial institution, but the locations of the first account and the second account are different, it means that the types of the first account and the second account are different.

第一账户和第二账户可以为对公账户,也可以为个人账户。一般情况下,账户的授权为对公账户与对公账户之间的授权,或者个人账户与个人账户之间的授权。也就是说,第一账户和第二账户均为对公账户,或者第一账户和第二账户均为个人账户。可以理解的是,对账账户之间的授权与个人账户的授权流程是相同的,不同之处仅在于对公账户和个人账户分别对应的账户信息(如具体的账号和订阅的交易项目等)有所不同。The first account and the second account may be corporate accounts or personal accounts. Under normal circumstances, the authorization of the account is the authorization between the public account and the public account, or the authorization between the personal account and the personal account. That is, the first account and the second account are both corporate accounts, or both the first account and the second account are personal accounts. It can be understood that the authorization process between the reconciliation accounts is the same as the authorization process of the personal account, and the difference is only the account information corresponding to the public account and the personal account respectively (such as the specific account number and the subscribed transaction items, etc.) different.

下面以第一账户和第二账户均为对公账户为例,对本发明实施例的账户授权方法进行说明。对公账户可能涉及多种业务,如收付款、票据池和跨行现金管理业务和跨境现金管理业务等。在执行不同业务时,将涉及不同类型的账户之间的授权,如境内账户和境外账户之间的授权、不同所属机构之间的账户之间的授权。The following describes the account authorization method according to the embodiment of the present invention by taking as an example that both the first account and the second account are public accounts. Corporate accounts may involve a variety of businesses, such as collection and payment, bill pooling, cross-bank cash management business, and cross-border cash management business. When performing different businesses, authorization between different types of accounts will be involved, such as authorization between domestic accounts and overseas accounts, authorization between accounts of different affiliated institutions.

在本发明一个实施例中,当第一账户和第二账户具有关联关系时,才为第一账户授权关于第二账户的使用权限。具体地,在此实施例中,所述授权请求还指示了所述第一账户的账户信息;根据所述第一账户的账户信息以及所述第二账户的账户信息,确定所述第一账户与所述第二账户是否具有关联关系;当所述第一账户与所述第二账户具有关联关系时,将所述授权请求发送给所述管理平台。In one embodiment of the present invention, when the first account and the second account have an associated relationship, the first account is authorized to use the right to use the second account. Specifically, in this embodiment, the authorization request further indicates account information of the first account; the first account is determined according to the account information of the first account and the account information of the second account Whether there is an association relationship with the second account; when the first account has an association relationship with the second account, the authorization request is sent to the management platform.

在接收到第一账户发起的授权请求后,实现本发明实施例的账户授权装置根据该授权请求指示的第一账户的账户信息和第二账户的账户信息,来确定第一账户和第二账户是否具有关联关系。After receiving the authorization request initiated by the first account, the account authorization device implementing the embodiment of the present invention determines the first account and the second account according to the account information of the first account and the account information of the second account indicated by the authorization request Is there a relationship.

一般来说,当所述第一账户和所述第二账户对应与同一个账户管理树时,确定所述第一账户和所述第二账户具有关联关系;所述账户管理树包括多个账户分别对应的节点,所述多个账户对应的用户属于同一企业或具有法定关系。Generally speaking, when the first account and the second account correspond to the same account management tree, it is determined that the first account and the second account have an associated relationship; the account management tree includes multiple accounts The corresponding nodes respectively, the users corresponding to the multiple accounts belong to the same enterprise or have a legal relationship.

在本发明实施例中,为了便于对属于同一企业或具有法定关系的多个具有关联关系的用户所对应的账户进行管理,也就是对多个具有关联关系的账户进行管理,会利用同一个账户管理树对多个账户进行管理,每个账户分别为此账户管理树中的一个节点。例如,当第一账户为总公司对应的对公账户,第二账户为子公司对应的对公账户时,则第一账户为账户管理树中的根节点,而第二账户为账户管理树中的叶节点。由此,通过同一个账户管理树对有关联关系的第一账户和第二账户进行管理,可以明确第一账户和第二账户的层级,便于记录第一账户和第二账户的交易信息,从而提高账户的管理效率。In this embodiment of the present invention, in order to facilitate the management of accounts corresponding to multiple users with associated relationships that belong to the same enterprise or have a legal relationship, that is, to manage multiple accounts with associated relationships, the same account will be used. The management tree manages multiple accounts, and each account is a node in the management tree for this account. For example, when the first account is the corporate account corresponding to the head office and the second account is the corporate account corresponding to the subsidiary company, the first account is the root node in the account management tree, and the second account is in the account management tree. leaf node. Therefore, by managing the related first and second accounts through the same account management tree, the levels of the first and second accounts can be clarified, and the transaction information of the first and second accounts can be easily recorded, thereby Improve account management efficiency.

那么,由于采用了同一个账户管理树对第一账户和第二账户进行管理,因此,可通过确定第一账户和第二账户是否对应于同一个账户管理树,来确定第一账户和第二账户是否关联。当确定出第一账户和第二账户相关联时,才将第一账户发起的授权请求发送给第二账户所对应的管理平台。由此实现具有关联关系的账户之间的线上授权,从而提高账户授权的安全性。Then, since the same account management tree is used to manage the first account and the second account, the first account and the second account can be determined by determining whether the first account and the second account correspond to the same account management tree. Whether the account is linked. When it is determined that the first account and the second account are associated, the authorization request initiated by the first account is sent to the management platform corresponding to the second account. In this way, online authorization between accounts having an associated relationship is realized, thereby improving the security of account authorization.

另外,为了进一步提高账户授权的安全性,在本发明实施例中,在确定第一账户是否与第二账户具有关联关系之前,还需先根据所述第一账户的账户信息,验证所述第一账户的合法性,当所述第一账户合法时,才确定所述第一账户与所述第二账户是否具有关联关系。In addition, in order to further improve the security of account authorization, in this embodiment of the present invention, before determining whether the first account has an associated relationship with the second account, it is also necessary to verify the first account according to the account information of the first account. The legitimacy of an account, when the first account is legitimate, it is determined whether the first account has an associated relationship with the second account.

例如,可以根据第一账户的注册信息,确定第一账户是否为非法登录,以确定第一账户是否合法。还可以根据第一账户所对应的历史交易信息,确定第一账户是否存在异常交易,以确定第一账户是否合法。还可以根据第一账户的交易状态来确定第一账户是否合法,例如,当第一账户处于冻结或质押等状态时,确定第一账户不合法,拒绝实现其发起的授权请求。而仅当第一账户合法时,才进一步确定第一账户和第二账户是否具有关联关系,从而实现仅为合法的第一账户实现账户授权,从而提高账户授权的安全性。For example, it may be determined whether the first account is illegally logged in according to the registration information of the first account, so as to determine whether the first account is legal. It can also be determined whether there is an abnormal transaction in the first account according to the historical transaction information corresponding to the first account, so as to determine whether the first account is legal. Whether the first account is legal can also be determined according to the transaction status of the first account. For example, when the first account is in a frozen or pledged state, it is determined that the first account is illegal, and the authorization request initiated by the first account is refused. And only when the first account is legal, it is further determined whether the first account and the second account have an associated relationship, so that account authorization is implemented only for the legal first account, thereby improving the security of account authorization.

值得一提的是,当第二账户的管理平台生成第二账户对应的授权凭证时,也是在第二账户处于正常交易状态的情况下才生成的。也就是说,在管理平台生成第二账户所对应的授权凭证时,第二账户处于正常交易状态。其中,管理平台可根据第二账户的历史交易信息来确定第二账户是否处于正常交易状态,例如,当根据历史交易信息确定第二账户存在异常的存贷款记录,或者存在未完成的质押等记录时,确定第二账户处于异常交易状态,此时管理平台不会生成第二账户的授权凭证,以避免即使在授权状态下,第一账户也无法使用第二账户的情况。换句话说,当第二账户处于正常交易状态时,管理平台才生成第二账户的授权凭证,从而保证授权账户的正常使用,便于交易的正常进行。It is worth mentioning that when the management platform of the second account generates the authorization certificate corresponding to the second account, it is also generated when the second account is in a normal transaction state. That is to say, when the management platform generates the authorization certificate corresponding to the second account, the second account is in a normal transaction state. Wherein, the management platform can determine whether the second account is in a normal transaction state according to the historical transaction information of the second account. For example, when it is determined according to the historical transaction information that the second account has abnormal deposit and loan records, or records such as unfinished pledges exist When it is determined that the second account is in an abnormal transaction state, the management platform will not generate an authorization certificate for the second account, so as to avoid the situation that the first account cannot use the second account even in the authorized state. In other words, when the second account is in a normal transaction state, the management platform generates the authorization certificate for the second account, so as to ensure the normal use of the authorized account and facilitate the normal transaction.

在本发明另一个实施例中,在接收到第二账户的管理平台发送的关于第二账户的授权凭证后,还可将第一账户的账户信息发送给第二账户的管理平台,以使所述管理平台对应存储所述第一账户的账户信息和所述授权凭证。由此,通过第二账户对应的管理平台对应存储第一账户的账户信息和第二账户的授权凭证,可对应记录第二授权的授权对象(第一账户),便于记录第一账户和第二账户分别对应的交易信息,从而便于对第一账户和第二账户进行管理。In another embodiment of the present invention, after receiving the authorization certificate about the second account sent by the management platform of the second account, the account information of the first account can also be sent to the management platform of the second account, so that all The management platform correspondingly stores the account information of the first account and the authorization certificate. Therefore, the account information of the first account and the authorization certificate of the second account can be stored correspondingly through the management platform corresponding to the second account, and the authorization object (the first account) of the second authorization can be correspondingly recorded, which is convenient for recording the first account and the second account. Transaction information corresponding to the accounts respectively, so as to facilitate the management of the first account and the second account.

在实际业务场景中,属于同一企业的境外账户和境内账户对公账户的相互授权是一种常见的授权场景。现有技术中,通常需要企业的工作人员到线下柜台提交相应的信息,才能实现境外账户和境内账户之间的授权。而采用本发明实施例提供的账户授权方法,可以实现境内账户和境外账户的线上授权,从而提高授权的效率和安全性。下面以境外账户授权给境内账户使用,也就是境内账户申请境外账户的授权为例,对本发明实施例提供的账户授权方法进行详细说明。如图2所示,在此场景下,本发明实施例提供的账户授权方法可以包括以下步骤:In actual business scenarios, the mutual authorization of corporate accounts from overseas accounts and domestic accounts belonging to the same enterprise is a common authorization scenario. In the prior art, it is usually necessary for the staff of the enterprise to submit the corresponding information to the offline counter in order to realize the authorization between the overseas account and the domestic account. However, by using the account authorization method provided by the embodiment of the present invention, online authorization of domestic accounts and overseas accounts can be realized, thereby improving the efficiency and security of authorization. The following describes the account authorization method provided by the embodiment of the present invention by taking the authorization of an overseas account to be used by a domestic account, that is, the authorization of a domestic account to apply for an overseas account as an example. As shown in FIG. 2, in this scenario, the account authorization method provided by the embodiment of the present invention may include the following steps:

步骤S201:第一账户发起授权请求,所述授权请求指示了第一账户的账户信息和第二账户的账户信息,所述第一账户和第二账户的类型不同。Step S201: The first account initiates an authorization request, the authorization request indicates account information of the first account and account information of the second account, and the types of the first account and the second account are different.

在这里,第一账户为境内账户,第二账户为境外账户。第一账户和第二账户的所属地不同,因此第一账户和第二账户的类型不同。境内账户的用户可通过其账户系统的前端或账户系统所对应的终端发起授权请求,在发起授权请求时,境内账户的用户可根据全球账户登记表,查询到第二账户的账户信息,以在授权请求中指示第二账户的账户信息。并且,在授权请求中还可指示境内账户的所属机构,以便于将该授权请求路由境内账户所属机构的后台,以便于其所属机构的后台验证第一账户的合法性。可以理解的是,在此例中,账户授权装置包括境内账户所属机构的前端、终端和后台等多种形式。Here, the first account is a domestic account, and the second account is an overseas account. The locations of the first account and the second account are different, so the types of the first account and the second account are different. The user of the domestic account can initiate an authorization request through the front end of the account system or the terminal corresponding to the account system. When initiating the authorization request, the user of the domestic account can query the account information of the second account according to the global account registration form, so as to use the The account information of the second account is indicated in the authorization request. In addition, the institution to which the domestic account belongs can also be indicated in the authorization request, so that the authorization request can be routed to the background of the institution to which the domestic account belongs, so that the background of the institution to which the domestic account belongs can verify the legitimacy of the first account. It can be understood that, in this example, the account authorization device includes various forms such as the front end, the terminal, and the back end of the institution to which the domestic account belongs.

步骤S202:根据第一账户的账户信息,验证第一账户的合法性。当第一账户合法时,执行步骤S203,当第一账户非法时,结束当前流程。Step S202: Verify the legitimacy of the first account according to the account information of the first account. When the first account is legal, step S203 is executed, and when the first account is illegal, the current process is ended.

步骤S203:根据第一账户的账户信息和第二账户的账户信息,确定第一账户和第二账户是否对应同一个账户管理树,当对应同一个账户管理树时,执行步骤S204;当不属于同一个账户管理树时,结束当前流程。Step S203: According to the account information of the first account and the account information of the second account, determine whether the first account and the second account correspond to the same account management tree, when corresponding to the same account management tree, perform step S204; When the same account management tree is reached, the current process ends.

步骤S204:确定第一账户和第二账户具有关联关系,并将授权请求发送给第二账户对应的管理平台。Step S204: It is determined that the first account and the second account have an associated relationship, and an authorization request is sent to the management platform corresponding to the second account.

在这里,账户授权装置在确定出第一账户和第二账户具有关联关系之后,可确定第二账户对应的管理平台。然后将第一账户发起的与授权请求对应的报文头(报文头为第一账户的法人ID)替换为第二账户的法人ID,以将授权请求转发给第二账户对应的管理平台。当第一账户和第二账户的所属机构不同,即第一账户的所属机构后台与第二账户对应的管理平台为不同的后台系统时,第一账户所属机构对应的系统和第二账户对应的管理平台的连接示意图可图3所示。其中,第一账户所属机构对应的系统为账户管理装置的一部分,第一账户的用户可通过第一账户所属机构的前端发起授权请求。Here, after determining that the first account and the second account have an associated relationship, the account authorization device may determine the management platform corresponding to the second account. Then, the message header corresponding to the authorization request initiated by the first account (the message header is the legal person ID of the first account) is replaced with the legal person ID of the second account to forward the authorization request to the management platform corresponding to the second account. When the institutions to which the first account and the second account belong are different, that is, when the background of the institution to which the first account belongs and the management platform corresponding to the second account are different background systems, the system corresponding to the institution to which the first account belongs and the system corresponding to the second account are different. The connection diagram of the management platform can be shown in Figure 3. The system corresponding to the institution to which the first account belongs is a part of the account management device, and the user of the first account can initiate an authorization request through the front end of the institution to which the first account belongs.

步骤S205:接收管理平台返回的授权凭证,并根据授权凭证,为所述第一账户授权关于所述第二账户的使用权限。Step S205: Receive the authorization credential returned by the management platform, and authorize the first account with the right to use the second account according to the authorization credential.

管理平台在第二账户处于正常交易状态时,管理平台才生成相应的授权凭证。另外,第一账户在得到关于第二账户授权的使用权限后,可利用第二账户实现相关交易。在此例中,第一账户为境内账户,第二账户为境外账户,则第一账户授权有关于第二账户的使用权限后,境内账户可根据境外账户的授权,执行相关的境外交易。The management platform only generates a corresponding authorization certificate when the second account is in a normal transaction state. In addition, after the first account obtains the use authority authorized by the second account, the second account can be used to implement related transactions. In this example, the first account is a domestic account and the second account is an overseas account. After the first account authorizes the use rights of the second account, the domestic account can execute relevant overseas transactions according to the authorization of the overseas account.

步骤S206:将第一账户的账户信息发送给所述管理平台,以使所述管理平台对应存储所述第一账户的账户信息和所述授权凭证。Step S206: Send the account information of the first account to the management platform, so that the management platform correspondingly stores the account information of the first account and the authorization certificate.

在第二账户授权给第一账户后,账户管理装置将第一账户的账户信息发送给第二账户对应的管理平台,使得管理平台可对应存储第一账户的账户信息和授权凭证,以便于第一账户和第二账户的管理。具体地,管理平台可采用如下表1所示的形式存储第一账户的账户信息和授权凭证:After the second account is authorized to the first account, the account management device sends the account information of the first account to the management platform corresponding to the second account, so that the management platform can correspondingly store the account information and authorization certificate of the first account, so as to facilitate the second account Management of the first account and the second account. Specifically, the management platform can store the account information and authorization credentials of the first account in the form shown in Table 1 below:

表1Table 1

Figure BDA0002565713450000111
Figure BDA0002565713450000111

另外,在第一账户对应的系统中,也可记录第一账户和第二账户之间的授权信息。其可采用下表2的形式记录相应的信息。除了表2中记录的信息,管理平台还可记录第一账户的币种和交易权限等信息,以便于对第一账户和第二账户进行管理。In addition, in the system corresponding to the first account, authorization information between the first account and the second account may also be recorded. It can record corresponding information in the form of Table 2 below. In addition to the information recorded in Table 2, the management platform can also record information such as the currency and transaction authority of the first account, so as to facilitate the management of the first account and the second account.

表2Table 2

Figure BDA0002565713450000112
Figure BDA0002565713450000112

其中,当第一账户申请第二账户的授权时,第一账户即为被授权方,则表2中的被授权方树编号为第一账户所属的账户管理树的编号,被授权方节点编号则为在其账户管理树中第一账户的编号。相应地,第二账户为授权方,则表2中的授权方树编号为第二账户所属的账户管理树的编号,被授权方节点编号则为在其账户管理树中第二账户的编号。表2中的账号为第一账户的账号,账号所属法人行为第一账户所属法人行的ID。由此,在管理平台和账户管理装置中均利用表格形式相应记录第一账户和第二账户的信息,便于后期对账户信息的查询和更新等操作,从而便于第一账户和第二账户的管理。Wherein, when the first account applies for the authorization of the second account, the first account is the authorized party, and the authorized party tree number in Table 2 is the number of the account management tree to which the first account belongs, and the authorized party node number It is the number of the first account in its account management tree. Correspondingly, if the second account is an authorizer, the authorizer tree number in Table 2 is the number of the account management tree to which the second account belongs, and the node number of the authorized party is the number of the second account in its account management tree. The account number in Table 2 is the account number of the first account, and the legal person row to which the account belongs is the ID of the legal person row to which the first account belongs. Therefore, in the management platform and the account management device, the information of the first account and the second account is correspondingly recorded in the form of a table, which facilitates operations such as query and update of the account information in the later stage, thereby facilitating the management of the first account and the second account. .

可以理解的是,在上述实施例中,第一账户为境内账户、第二账户为境外账户,可通过本发明实施例提供的账户授权的方法实现二者的授权。在本发明另外的实施方式中,第一账户可以为境外账户,第二账户可以为境内账户,另外,第一账户和第二账户的所属机构可以相同,也可以不同。总之,不同类型的账户,均可通过本发明实施例提供的账户授权方式实现线上授权。It can be understood that, in the above embodiment, the first account is a domestic account and the second account is an overseas account, and the authorization of the two can be realized through the account authorization method provided in the embodiment of the present invention. In another embodiment of the present invention, the first account may be an overseas account, and the second account may be a domestic account. In addition, the institutions to which the first account and the second account belong may be the same or different. In a word, different types of accounts can be authorized online through the account authorization method provided by the embodiment of the present invention.

根据本发明实施例的一种账户授权的方法可以看出,在获取到第一账户发起的授权请求后,根据该授权请求指示的第二账户的账户信息,确定第二账户对应的管理平台,然后将授权请求发送给管理平台,使得该管理平台生成第二账户对应的授权凭证,然后根据该授权凭证为第一账户授权关于第二账户的使用权限,由此实现了第一账户和第二账户之间的线上授权,而无需用户去线下柜台办理账户的授权业务,从而提高了账户授权效率,并提高了用户体验。According to an account authorization method according to an embodiment of the present invention, after obtaining the authorization request initiated by the first account, the management platform corresponding to the second account is determined according to the account information of the second account indicated by the authorization request, Then, the authorization request is sent to the management platform, so that the management platform generates an authorization certificate corresponding to the second account, and then authorizes the first account with the use authority of the second account according to the authorization certificate, thereby realizing the first account and the second account. Online authorization between accounts eliminates the need for users to go to offline counters for account authorization services, thereby improving account authorization efficiency and user experience.

图4是根据本发明实施例的一种账户授权的装置的主要模块的示意图。FIG. 4 is a schematic diagram of main modules of an account authorization device according to an embodiment of the present invention.

如图4所示,本发明实施例的一种账户授权的装置400包括:请求获取模块401、确定模块402和授权模块403;其中,As shown in FIG. 4 , an account authorization device 400 according to an embodiment of the present invention includes: a request acquisition module 401, a determination module 402, and an authorization module 403; wherein,

所述请求获取模块401,用于获取第一账户发起的授权请求,所述授权请求指示了第二账户的账户信息,所述第一账户和所述第二账户的类型不同;The request obtaining module 401 is configured to obtain an authorization request initiated by a first account, where the authorization request indicates account information of a second account, and the types of the first account and the second account are different;

所述确定模块402,根据所述第二账户的账户信息,确定所述第二账户对应的管理平台,并将所述授权请求发送给所述管理平台,以使所述管理平台生成所述第二账户对应的授权凭证;The determining module 402 determines the management platform corresponding to the second account according to the account information of the second account, and sends the authorization request to the management platform, so that the management platform generates the first account. The authorization certificate corresponding to the second account;

所述授权模块403,用于根据所述授权凭证,为所述第一账户授权关于所述第二账户的使用权限。The authorization module 403 is configured to authorize, according to the authorization credential, the use authority of the second account for the first account.

在本发明一个实施例中,所述授权请求还指示了所述第一账户的账户信息;所述确定模块402,用于根据所述第一账户的账户信息以及所述第二账户的账户信息,确定所述第一账户与所述第二账户是否具有关联关系;当所述第一账户与所述第二账户具有关联关系时,将所述授权请求发送给所述管理平台。In an embodiment of the present invention, the authorization request further indicates account information of the first account; the determining module 402 is configured to, according to the account information of the first account and the account information of the second account , determine whether the first account has an associated relationship with the second account; when the first account has an associated relationship with the second account, send the authorization request to the management platform.

在本发明一个实施例中,所述确定模块402,用于当所述第一账户和所述第二账户对应与同一个账户管理树时,确定所述第一账户和所述第二账户具有关联关系;所述账户管理树包括多个账户分别对应的节点,所述多个账户对应的用户属于同一企业或具有法定关系。In an embodiment of the present invention, the determining module 402 is configured to, when the first account and the second account correspond to the same account management tree, determine that the first account and the second account have An association relationship; the account management tree includes nodes corresponding to multiple accounts respectively, and the users corresponding to the multiple accounts belong to the same enterprise or have a legal relationship.

在本发明一个实施例中,所述确定模块402,用于根据所述第一账户的账户信息,验证所述第一账户的合法性,当所述第一账户合法时,确定所述第一账户与所述第二账户是否具有关联关系。In an embodiment of the present invention, the determining module 402 is configured to verify the legitimacy of the first account according to the account information of the first account, and when the first account is legit, determine the first account Whether the account has an associated relationship with the second account.

在本发明一个实施例中,所述授权模块403,用于将第一账户的账户信息发送给所述管理平台,以使所述管理平台对应存储所述第一账户的账户信息和所述授权凭证。In an embodiment of the present invention, the authorization module 403 is configured to send the account information of the first account to the management platform, so that the management platform correspondingly stores the account information of the first account and the authorization certificate.

在本发明一个实施例中,所述授权凭证是所述管理平台在确定出所述第二账户处于正常交易状态的情况下生成的。In an embodiment of the present invention, the authorization certificate is generated by the management platform when it is determined that the second account is in a normal transaction state.

图5是根据本发明实施例的一种账户授权的装置的主要模块的示意图。FIG. 5 is a schematic diagram of main modules of an account authorization device according to an embodiment of the present invention.

如图5所示,本发明实施例的一种账户授权的系统500,包括:管理平台501和上述任一实施例提供的账户授权的装置400;As shown in FIG. 5 , an account authorization system 500 according to an embodiment of the present invention includes: a management platform 501 and an account authorization device 400 provided by any of the foregoing embodiments;

所述管理平台501,用于根据所述账户授权的装置400发送的授权请求,对第二账户进行验证,当所述第二账户处于正常状态时,生成所述第二账户对应的授权凭证,并将所述授权凭证发送给所述账户授权的装置400。The management platform 501 is configured to verify the second account according to the authorization request sent by the account authorization device 400, and when the second account is in a normal state, generate an authorization certificate corresponding to the second account, and send the authorization credential to the account authorization device 400 .

在本发明一个实施例中,所述管理平台501,用于根据所述第二账户的历史交易信息,确定所述第二账户是否处于正常状态。In an embodiment of the present invention, the management platform 501 is configured to determine whether the second account is in a normal state according to historical transaction information of the second account.

根据本发明实施例的一种账户授权的装置和账户授权的系统可以看出,在获取到第一账户发起的授权请求后,根据该授权请求指示的第二账户的账户信息,确定第二账户对应的管理平台,然后将授权请求发送给管理平台,使得该管理平台生成第二账户对应的授权凭证,然后根据该授权凭证为第一账户授权关于第二账户的使用权限,由此实现了第一账户和第二账户之间的线上授权,而无需用户去线下柜台办理账户的授权业务,从而提高了账户授权效率,并提高了用户体验。According to an account authorization device and an account authorization system according to an embodiment of the present invention, it can be seen that, after obtaining the authorization request initiated by the first account, the second account is determined according to the account information of the second account indicated by the authorization request. The corresponding management platform, and then sends the authorization request to the management platform, so that the management platform generates the authorization certificate corresponding to the second account, and then authorizes the first account with the use authority of the second account according to the authorization certificate, thereby realizing the first account. The online authorization between the first account and the second account does not require the user to go to the offline counter to handle the account authorization business, thereby improving the account authorization efficiency and improving the user experience.

图6示出了可以应用本发明实施例的账户授权的方法或账户授权的装置的示例性系统架构600。FIG. 6 shows an exemplary system architecture 600 of an account authorization method or an account authorization apparatus to which embodiments of the present invention may be applied.

如图6所示,系统架构600可以包括终端设备601、602、603,网络604和服务器605。网络604用以在终端设备601、602、603和服务器605之间提供通信链路的介质。网络604可以包括各种连接类型,例如有线、无线通信链路或者光纤电缆等等。As shown in FIG. 6 , the system architecture 600 may include terminal devices 601 , 602 , and 603 , a network 604 and a server 605 . The network 604 is a medium used to provide a communication link between the terminal devices 601 , 602 , 603 and the server 605 . Network 604 may include various connection types, such as wired, wireless communication links, or fiber optic cables, among others.

用户可以使用终端设备601、602、603通过网络604与服务器605交互,以接收或发送消息等。终端设备601、602、603上可以安装有各种通讯客户端应用,例如购物类应用、网页浏览器应用、搜索类应用、即时通信工具、邮箱客户端、社交平台软件等。The user can use the terminal devices 601, 602, 603 to interact with the server 605 through the network 604 to receive or send messages and the like. Various communication client applications may be installed on the terminal devices 601 , 602 and 603 , such as shopping applications, web browser applications, search applications, instant messaging tools, email clients, social platform software, and the like.

终端设备601、602、603可以是具有显示屏并且支持网页浏览的各种电子设备,包括但不限于智能手机、平板电脑、膝上型便携计算机和台式计算机等等。The terminal devices 601, 602, 603 may be various electronic devices having a display screen and supporting web browsing, including but not limited to smart phones, tablet computers, laptop computers, desktop computers, and the like.

服务器605可以是提供各种服务的服务器,例如对用户利用终端设备601、602、603所浏览的购物类网站提供支持的后台管理服务器。后台管理服务器可以对接收到的产品信息查询请求等数据进行分析等处理,并将处理结果(例如目标推送信息、产品信息)反馈给终端设备。The server 605 may be a server that provides various services, for example, a background management server that provides support for shopping websites browsed by the terminal devices 601 , 602 , and 603 . The background management server can analyze and process the received product information query request and other data, and feed back the processing results (eg, target push information, product information) to the terminal device.

需要说明的是,本发明实施例所提供的账户授权的方法一般由服务器605执行,相应地,账户授权的装置一般设置于服务器605中。It should be noted that the account authorization method provided by the embodiment of the present invention is generally performed by the server 605 , and accordingly, the account authorization device is generally set in the server 605 .

应该理解,图6中的终端设备、网络和服务器的数目仅仅是示意性的。根据实现需要,可以具有任意数目的终端设备、网络和服务器。It should be understood that the numbers of terminal devices, networks and servers in FIG. 6 are merely illustrative. There can be any number of terminal devices, networks and servers according to implementation needs.

下面参考图7,其示出了适于用来实现本发明实施例的终端设备的计算机系统700的结构示意图。图7示出的终端设备仅仅是一个示例,不应对本发明实施例的功能和使用范围带来任何限制。Referring next to FIG. 7 , it shows a schematic structural diagram of a computer system 700 suitable for implementing a terminal device according to an embodiment of the present invention. The terminal device shown in FIG. 7 is only an example, and should not impose any limitations on the functions and scope of use of the embodiments of the present invention.

如图7所示,计算机系统700包括中央处理单元(CPU)701,其可以根据存储在只读存储器(ROM)702中的程序或者从存储部分708加载到随机访问存储器(RAM)703中的程序而执行各种适当的动作和处理。在RAM 703中,还存储有系统700操作所需的各种程序和数据。CPU 701、ROM 702以及RAM 703通过总线704彼此相连。输入/输出(I/O)接口705也连接至总线704。As shown in FIG. 7, a computer system 700 includes a central processing unit (CPU) 701 which can be loaded into a random access memory (RAM) 703 according to a program stored in a read only memory (ROM) 702 or a program from a storage section 708 Instead, various appropriate actions and processes are performed. In the RAM 703, various programs and data necessary for the operation of the system 700 are also stored. The CPU 701 , the ROM 702 , and the RAM 703 are connected to each other through a bus 704 . An input/output (I/O) interface 705 is also connected to bus 704 .

以下部件连接至I/O接口705:包括键盘、鼠标等的输入部分706;包括诸如阴极射线管(CRT)、液晶显示器(LCD)等以及扬声器等的输出部分707;包括硬盘等的存储部分708;以及包括诸如LAN卡、调制解调器等的网络接口卡的通信部分709。通信部分709经由诸如因特网的网络执行通信处理。驱动器710也根据需要连接至I/O接口705。可拆卸介质711,诸如磁盘、光盘、磁光盘、半导体存储器等等,根据需要安装在驱动器710上,以便于从其上读出的计算机程序根据需要被安装入存储部分708。The following components are connected to the I/O interface 705: an input section 706 including a keyboard, a mouse, etc.; an output section 707 including a cathode ray tube (CRT), a liquid crystal display (LCD), etc., and a speaker, etc.; a storage section 708 including a hard disk, etc. ; and a communication section 709 including a network interface card such as a LAN card, a modem, and the like. The communication section 709 performs communication processing via a network such as the Internet. A drive 710 is also connected to the I/O interface 705 as needed. A removable medium 711, such as a magnetic disk, an optical disk, a magneto-optical disk, a semiconductor memory, etc., is mounted on the drive 710 as needed so that a computer program read therefrom is installed into the storage section 708 as needed.

特别地,根据本发明公开的实施例,上文参考流程图描述的过程可以被实现为计算机软件程序。例如,本发明公开的实施例包括一种计算机程序产品,其包括承载在计算机可读介质上的计算机程序,该计算机程序包含用于执行流程图所示的方法的程序代码。在这样的实施例中,该计算机程序可以通过通信部分709从网络上被下载和安装,和/或从可拆卸介质711被安装。在该计算机程序被中央处理单元(CPU)701执行时,执行本发明的系统中限定的上述功能。In particular, the processes described above with reference to the flowcharts may be implemented as computer software programs in accordance with the disclosed embodiments of the present invention. For example, embodiments disclosed herein include a computer program product comprising a computer program carried on a computer-readable medium, the computer program containing program code for performing the method illustrated in the flowchart. In such an embodiment, the computer program may be downloaded and installed from the network via the communication portion 709 and/or installed from the removable medium 711 . When the computer program is executed by the central processing unit (CPU) 701, the above-described functions defined in the system of the present invention are executed.

需要说明的是,本发明所示的计算机可读介质可以是计算机可读信号介质或者计算机可读存储介质或者是上述两者的任意组合。计算机可读存储介质例如可以是——但不限于——电、磁、光、电磁、红外线、或半导体的系统、装置或器件,或者任意以上的组合。计算机可读存储介质的更具体的例子可以包括但不限于:具有一个或多个导线的电连接、便携式计算机磁盘、硬盘、随机访问存储器(RAM)、只读存储器(ROM)、可擦式可编程只读存储器(EPROM或闪存)、光纤、便携式紧凑磁盘只读存储器(CD-ROM)、光存储器件、磁存储器件、或者上述的任意合适的组合。在本发明中,计算机可读存储介质可以是任何包含或存储程序的有形介质,该程序可以被指令执行系统、装置或者器件使用或者与其结合使用。而在本发明中,计算机可读的信号介质可以包括在基带中或者作为载波一部分传播的数据信号,其中承载了计算机可读的程序代码。这种传播的数据信号可以采用多种形式,包括但不限于电磁信号、光信号或上述的任意合适的组合。计算机可读的信号介质还可以是计算机可读存储介质以外的任何计算机可读介质,该计算机可读介质可以发送、传播或者传输用于由指令执行系统、装置或者器件使用或者与其结合使用的程序。计算机可读介质上包含的程序代码可以用任何适当的介质传输,包括但不限于:无线、电线、光缆、RF等等,或者上述的任意合适的组合。It should be noted that the computer-readable medium shown in the present invention may be a computer-readable signal medium or a computer-readable storage medium, or any combination of the above two. The computer-readable storage medium can be, for example, but not limited to, an electrical, magnetic, optical, electromagnetic, infrared, or semiconductor system, apparatus or device, or a combination of any of the above. More specific examples of computer readable storage media may include, but are not limited to, electrical connections with one or more wires, portable computer disks, hard disks, random access memory (RAM), read only memory (ROM), erasable Programmable read only memory (EPROM or flash memory), fiber optics, portable compact disk read only memory (CD-ROM), optical storage devices, magnetic storage devices, or any suitable combination of the foregoing. In the present invention, a computer-readable storage medium may be any tangible medium that contains or stores a program that can be used by or in conjunction with an instruction execution system, apparatus, or device. In the present invention, however, a computer-readable signal medium may include a data signal propagated in baseband or as part of a carrier wave, carrying computer-readable program code therein. Such propagated data signals may take a variety of forms, including but not limited to electromagnetic signals, optical signals, or any suitable combination of the foregoing. A computer-readable signal medium can also be any computer-readable medium other than a computer-readable storage medium that can transmit, propagate, or transport the program for use by or in connection with the instruction execution system, apparatus, or device . Program code embodied on a computer readable medium may be transmitted using any suitable medium including, but not limited to, wireless, wireline, optical fiber cable, RF, etc., or any suitable combination of the foregoing.

附图中的流程图和框图,图示了按照本发明各种实施例的系统、方法和计算机程序产品的可能实现的体系架构、功能和操作。在这点上,流程图或框图中的每个方框可以代表一个模块、程序段、或代码的一部分,上述模块、程序段、或代码的一部分包含一个或多个用于实现规定的逻辑功能的可执行指令。也应当注意,在有些作为替换的实现中,方框中所标注的功能也可以以不同于附图中所标注的顺序发生。例如,两个接连地表示的方框实际上可以基本并行地执行,它们有时也可以按相反的顺序执行,这依所涉及的功能而定。也要注意的是,框图或流程图中的每个方框、以及框图或流程图中的方框的组合,可以用执行规定的功能或操作的专用的基于硬件的系统来实现,或者可以用专用硬件与计算机指令的组合来实现。The flowchart and block diagrams in the Figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present invention. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of code that contains one or more logical functions for implementing the specified functions executable instructions. It should also be noted that, in some alternative implementations, the functions noted in the blocks may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It is also noted that each block of the block diagrams or flowchart illustrations, and combinations of blocks in the block diagrams or flowchart illustrations, can be implemented in special purpose hardware-based systems that perform the specified functions or operations, or can be implemented using A combination of dedicated hardware and computer instructions is implemented.

描述于本发明实施例中所涉及到的模块可以通过软件的方式实现,也可以通过硬件的方式来实现。所描述的模块也可以设置在处理器中,例如,可以描述为:一种处理器包括请求获取模块、确定模块和授权模块。其中,这些模块的名称在某种情况下并不构成对该模块本身的限定,例如,请求获取模块还可以被描述为“获取第一账户发起的授权请求的模块”。The modules involved in the embodiments of the present invention may be implemented in a software manner, and may also be implemented in a hardware manner. The described module can also be set in the processor, for example, it can be described as: a processor includes a request acquisition module, a determination module and an authorization module. Wherein, the names of these modules do not constitute a limitation on the module itself under certain circumstances. For example, the requesting module may also be described as "a module for obtaining an authorization request initiated by the first account".

作为另一方面,本发明还提供了一种计算机可读介质,该计算机可读介质可以是上述实施例中描述的设备中所包含的;也可以是单独存在,而未装配入该设备中。上述计算机可读介质承载有一个或者多个程序,当上述一个或者多个程序被一个该设备执行时,使得该设备包括:获取第一账户发起的授权请求,所述授权请求指示了第二账户的账户信息,所述第一账户和所述第二账户的类型不同;根据所述第二账户的账户信息,确定所述第二账户对应的管理平台,并将所述授权请求发送给所述管理平台,以使所述管理平台生成所述第二账户对应的授权凭证;根据所述授权凭证,为所述第一账户授权关于所述第二账户的使用权限。As another aspect, the present invention also provides a computer-readable medium, which may be included in the device described in the above embodiments; or may exist alone without being assembled into the device. The above-mentioned computer-readable medium carries one or more programs, and when the above-mentioned one or more programs are executed by a device, the device includes: obtaining an authorization request initiated by the first account, the authorization request indicating the second account According to the account information of the second account, determine the management platform corresponding to the second account, and send the authorization request to the and a management platform, so that the management platform generates an authorization certificate corresponding to the second account; and according to the authorization certificate, authorizes the first account with the use right of the second account.

根据本发明实施例的技术方案,在获取到第一账户发起的授权请求后,根据该授权请求指示的第二账户的账户信息,确定第二账户对应的管理平台,然后将授权请求发送给管理平台,使得该管理平台生成第二账户对应的授权凭证,然后根据该授权凭证为第一账户授权关于第二账户的使用权限,由此实现了第一账户和第二账户之间的线上授权,而无需用户去线下柜台办理账户的授权业务,从而提高了账户授权效率,并提高了用户体验。According to the technical solution of the embodiment of the present invention, after obtaining the authorization request initiated by the first account, the management platform corresponding to the second account is determined according to the account information of the second account indicated by the authorization request, and then the authorization request is sent to the management platform The platform enables the management platform to generate an authorization credential corresponding to the second account, and then authorizes the first account with the right to use the second account according to the authorization credential, thereby realizing the online authorization between the first account and the second account , without requiring the user to go to the offline counter to handle the account authorization business, thereby improving the account authorization efficiency and improving the user experience.

上述具体实施方式,并不构成对本发明保护范围的限制。本领域技术人员应该明白的是,取决于设计要求和其他因素,可以发生各种各样的修改、组合、子组合和替代。任何在本发明的精神和原则之内所作的修改、等同替换和改进等,均应包含在本发明保护范围之内。The above-mentioned specific embodiments do not constitute a limitation on the protection scope of the present invention. It should be understood by those skilled in the art that various modifications, combinations, sub-combinations and substitutions may occur depending on design requirements and other factors. Any modifications, equivalent replacements and improvements made within the spirit and principle of the present invention shall be included within the protection scope of the present invention.

Claims (12)

1.一种账户授权的方法,其特征在于,包括:1. A method for account authorization, comprising: 获取第一账户发起的授权请求,所述授权请求指示了第二账户的账户信息,所述第一账户和所述第二账户的类型不同;Obtaining an authorization request initiated by a first account, where the authorization request indicates account information of a second account, and the types of the first account and the second account are different; 根据所述第二账户的账户信息,确定所述第二账户对应的管理平台,并将所述授权请求发送给所述管理平台,以使所述管理平台生成所述第二账户对应的授权凭证;According to the account information of the second account, determine the management platform corresponding to the second account, and send the authorization request to the management platform, so that the management platform can generate the authorization certificate corresponding to the second account ; 根据所述授权凭证,为所述第一账户授权关于所述第二账户的使用权限。According to the authorization credential, the first account is authorized to use the authorization for the second account. 2.根据权利要求1所述的方法,其特征在于,所述授权请求还指示了所述第一账户的账户信息;2. The method according to claim 1, wherein the authorization request further indicates account information of the first account; 根据所述第一账户的账户信息以及所述第二账户的账户信息,确定所述第一账户与所述第二账户是否具有关联关系;According to the account information of the first account and the account information of the second account, determine whether the first account has an associated relationship with the second account; 当所述第一账户与所述第二账户具有关联关系时,将所述授权请求发送给所述管理平台。When the first account has an associated relationship with the second account, the authorization request is sent to the management platform. 3.根据权利要求2所述的方法,其特征在于,3. The method of claim 2, wherein 当所述第一账户和所述第二账户对应与同一个账户管理树时,确定所述第一账户和所述第二账户具有关联关系;所述账户管理树包括多个账户分别对应的节点,所述多个账户对应的用户属于同一企业或具有法定关系。When the first account and the second account correspond to the same account management tree, it is determined that the first account and the second account have an associated relationship; the account management tree includes nodes corresponding to multiple accounts respectively , the users corresponding to the multiple accounts belong to the same enterprise or have a legal relationship. 4.根据权利要求2所述的方法,其特征在于,还包括:4. The method of claim 2, further comprising: 根据所述第一账户的账户信息,验证所述第一账户的合法性,当所述第一账户合法时,确定所述第一账户与所述第二账户是否具有关联关系。According to the account information of the first account, the validity of the first account is verified, and when the first account is valid, it is determined whether the first account has an associated relationship with the second account. 5.根据权利要求1所述的方法,其特征在于,还包括:5. The method of claim 1, further comprising: 将第一账户的账户信息发送给所述管理平台,以使所述管理平台对应存储所述第一账户的账户信息和所述授权凭证。The account information of the first account is sent to the management platform, so that the management platform correspondingly stores the account information of the first account and the authorization certificate. 6.根据权利要求1所述的方法,其特征在于,6. The method of claim 1, wherein 所述授权凭证是所述管理平台在确定出所述第二账户处于正常交易状态的情况下生成的。The authorization certificate is generated when the management platform determines that the second account is in a normal transaction state. 7.根据权利要求1至7任一所述的方法,其特征在于,7. The method according to any one of claims 1 to 7, wherein, 所述第一账户为境内账户,所述第二账户为境外账户;The first account is a domestic account, and the second account is an overseas account; 或,or, 所述第一账户为境外账户,所述第二账户为境内账户。The first account is an overseas account, and the second account is a domestic account. 8.一种账户授权的装置,其特征在于,包括:请求获取模块、确定模块和授权模块;其中,8. A device for account authorization, comprising: a request acquisition module, a determination module and an authorization module; wherein, 所述请求获取模块,用于获取第一账户发起的授权请求,所述授权请求指示了第二账户的账户信息,所述第一账户和所述第二账户的类型不同;The request obtaining module is configured to obtain an authorization request initiated by a first account, where the authorization request indicates account information of a second account, and the types of the first account and the second account are different; 所述确定模块,根据所述第二账户的账户信息,确定所述第二账户对应的管理平台,并将所述授权请求发送给所述管理平台,以使所述管理平台生成所述第二账户对应的授权凭证;The determining module determines the management platform corresponding to the second account according to the account information of the second account, and sends the authorization request to the management platform, so that the management platform generates the second account. The authorization certificate corresponding to the account; 所述授权模块,用于根据所述授权凭证,为所述第一账户授权关于所述第二账户的使用权限。The authorization module is configured to authorize the first account with the use right of the second account according to the authorization certificate. 9.一种账户授权的系统,其特征在于,包括:管理平台和权利要求8所述的账户授权的装置;9. An account authorization system, comprising: a management platform and the account authorization device of claim 8; 所述管理平台,用于根据所述账户授权的装置发送的授权请求,对第二账户进行验证,当所述第二账户处于正常状态时,生成所述第二账户对应的授权凭证,并将所述授权凭证发送给所述账户授权的装置。The management platform is configured to verify the second account according to the authorization request sent by the account authorization device, and when the second account is in a normal state, generate an authorization credential corresponding to the second account, and assign the authorization certificate to the second account. The authorization credential is sent to the account authorization device. 10.根据权利要求9所述的系统,其特征在于,10. The system of claim 9, wherein: 所述管理平台,用于根据所述第二账户的历史交易信息,确定所述第二账户是否处于正常状态。The management platform is configured to determine whether the second account is in a normal state according to historical transaction information of the second account. 11.一种账户授权的服务器,其特征在于,包括:11. A server for account authorization, comprising: 一个或多个处理器;one or more processors; 存储装置,用于存储一个或多个程序,storage means for storing one or more programs, 当所述一个或多个程序被所述一个或多个处理器执行,使得所述一个或多个处理器实现如权利要求1-7中任一所述的方法。The one or more programs, when executed by the one or more processors, cause the one or more processors to implement the method of any of claims 1-7. 12.一种计算机可读介质,其上存储有计算机程序,其特征在于,所述程序被处理器执行时实现如权利要求1-7中任一所述的方法。12. A computer-readable medium on which a computer program is stored, characterized in that, when the program is executed by a processor, the method according to any one of claims 1-7 is implemented.
CN202010623046.4A 2020-07-01 2020-07-01 A method, device and system for account authorization Pending CN111833066A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202010623046.4A CN111833066A (en) 2020-07-01 2020-07-01 A method, device and system for account authorization

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202010623046.4A CN111833066A (en) 2020-07-01 2020-07-01 A method, device and system for account authorization

Publications (1)

Publication Number Publication Date
CN111833066A true CN111833066A (en) 2020-10-27

Family

ID=72901328

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202010623046.4A Pending CN111833066A (en) 2020-07-01 2020-07-01 A method, device and system for account authorization

Country Status (1)

Country Link
CN (1) CN111833066A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113487303A (en) * 2021-07-01 2021-10-08 深圳海付移通科技有限公司 Account management method and device, computer equipment and storage medium
CN114638489A (en) * 2022-03-07 2022-06-17 支付宝(杭州)信息技术有限公司 Resource management method and device
WO2023040531A1 (en) * 2021-09-16 2023-03-23 深圳市富途网络科技有限公司 Account authorization method and apparatus, device, storage medium, and computer program product
WO2024077780A1 (en) * 2022-10-12 2024-04-18 深圳市富途网络科技有限公司 Transaction account data management method and apparatus, electronic device, and storage medium

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160005023A1 (en) * 2014-07-07 2016-01-07 Google Inc. Conducting financial transactions by telephone
CN110474902A (en) * 2019-08-14 2019-11-19 中国工商银行股份有限公司 The method of account binding, calculates equipment and medium at system
CN111062024A (en) * 2019-11-25 2020-04-24 泰康保险集团股份有限公司 Application login method and device
CN111159308A (en) * 2020-04-02 2020-05-15 支付宝(杭州)信息技术有限公司 Transaction record sharing method, device and electronic device based on blockchain network

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20160005023A1 (en) * 2014-07-07 2016-01-07 Google Inc. Conducting financial transactions by telephone
CN110474902A (en) * 2019-08-14 2019-11-19 中国工商银行股份有限公司 The method of account binding, calculates equipment and medium at system
CN111062024A (en) * 2019-11-25 2020-04-24 泰康保险集团股份有限公司 Application login method and device
CN111159308A (en) * 2020-04-02 2020-05-15 支付宝(杭州)信息技术有限公司 Transaction record sharing method, device and electronic device based on blockchain network

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN113487303A (en) * 2021-07-01 2021-10-08 深圳海付移通科技有限公司 Account management method and device, computer equipment and storage medium
WO2023040531A1 (en) * 2021-09-16 2023-03-23 深圳市富途网络科技有限公司 Account authorization method and apparatus, device, storage medium, and computer program product
CN114638489A (en) * 2022-03-07 2022-06-17 支付宝(杭州)信息技术有限公司 Resource management method and device
WO2024077780A1 (en) * 2022-10-12 2024-04-18 深圳市富途网络科技有限公司 Transaction account data management method and apparatus, electronic device, and storage medium

Similar Documents

Publication Publication Date Title
CN112334933B (en) Blockchain transaction processing
US10715317B2 (en) Protection of confidentiality, privacy and financial fairness in a blockchain based decentralized identity management system
US20120143772A1 (en) Secure Distributed Single Action Payment Authorization System
KR20190099076A (en) Electronic bill management methods, devices and recording media
CN113052599B (en) Method, device, equipment and system for generating, verifying and storing transaction vouchers
CN111833066A (en) A method, device and system for account authorization
US11038685B1 (en) Correcting blockchain transactions with cryptocurrency type mistakes
CN110599140B (en) Digital currency verification method and system
WO2020097257A1 (en) Card storage handler for tracking of card data storage across service provider platforms
US20180152429A1 (en) Systems and methods for publicly verifiable authorization
CN111784887A (en) A method, device and system for authorization and release of user access
JP2022549624A (en) Blockchain transaction callback mechanism
US20240281802A1 (en) Digital Currency-Based Payment Method, Platform and System, and Terminal
CN110033370A (en) Account creation method and device, electronic equipment and storage medium
US20250141703A1 (en) Systems and methods for mitigating network congestion on blockchain networks by supporting blockchain operations through off-chain interactions
CN111833037A (en) A method and device for account management
US20240193594A1 (en) Method, Terminal and System for Splitting and Managing Digital Currency in Transaction
US20230068597A1 (en) Cryptocurrency system and method for performing financial transactions
US20140006271A1 (en) Cross-network electronic payment processing system and method
AU2023278778A1 (en) Facilitating cryptocurrency-based transactions with time constraint
CN110611656B (en) Identity management method, device and system based on master identity multiple mapping
CN110602074B (en) A method, device and system for using business identity based on master-slave association
CN110659889B (en) A digital currency circulation method and system
CN110634062B (en) Digital currency quota putting method and system
CN116012006B (en) A payment method, platform, and payment system based on digital currency.

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
TA01 Transfer of patent application right

Effective date of registration: 20220923

Address after: 25 Financial Street, Xicheng District, Beijing 100033

Applicant after: CHINA CONSTRUCTION BANK Corp.

Address before: 25 Financial Street, Xicheng District, Beijing 100033

Applicant before: CHINA CONSTRUCTION BANK Corp.

Applicant before: Jianxin Financial Science and Technology Co.,Ltd.

TA01 Transfer of patent application right
RJ01 Rejection of invention patent application after publication

Application publication date: 20201027

RJ01 Rejection of invention patent application after publication