Looking for breakthrough ideas for innovation challenges? Try Patsnap Eureka!

Single sign-on integrated method for Form identity authentication in single login system

A single sign-on and identity authentication technology, which is applied in the field of single sign-on integration for Form identity authentication, can solve the problems of destroying related operation processing logic, complex related functions, and the inability of filters to judge user login or identity authentication, etc.

Inactive Publication Date: 2012-08-01
WUHAN UNIV OF TECH +1
View PDF4 Cites 51 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0009] 1) In many cases, it is complicated or difficult to implement related functions with the filter mechanism;
[0010] 2) The filter needs to be responsible for judging which system functions or resources are protected, and in some cases the filter cannot do this, for example, when the web application is based on its own business logic, rather than based on the HTTP request URL, In the case of judging whether the user needs to log in (identity authentication), the filter cannot judge whether the user needs to log in or authenticate (because the filter judges based on the HTTP request URL);
[0012] 4) Before the filter submits the user's account name and password to the login verification page by filling in the password, the user does not visit the login page (such as Login.jsp) for the first time (that is, the operation of accessing the login page is skipped) , but in fact, when the user visits the login page for the first time, the web application system may do some initialization for the user's subsequent visit operations (including password verification operations), and skipping the operation of the initial visit page may destroy subsequent visits. Related operation processing logic (such as password verification processing);
[0013] 5) After the filter completes user authentication and local login operations, the filter is responsible for redirecting the user to the protected Web page it initially wants to visit, and in the case of the POST method used when the user first visits the protected resource , the filter is responsible for guiding the user to access the protected resources to be accessed for the first time with the POST method and the original POST parameters, which is relatively complicated and even difficult in terms of technical implementation. On the contrary, the original system itself may already have this function
[0016] 2) The login plug-in is not responsible for judging which system functions or resources are protected, these are still the responsibility of the original system, and the login plug-in only transparently changes the process of the login operation (identification);

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Single sign-on integrated method for Form identity authentication in single login system
  • Single sign-on integrated method for Form identity authentication in single login system

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0064] The present invention will be described in further detail below in conjunction with the accompanying drawings.

[0065] The present invention is a single sign-on integration method for Form identity authentication in a single sign-on system, the overall structure of the single sign-on system of the method is as follows figure 1 As shown, including web application, web server, login request proxy page plug-in, login verification proxy page, login verification HTTP plug-in, browser, identity service system, master account database, master-slave account binding database, among which web application and The Web server constitutes the Web application system. The functions of each component of the system have been described in detail in the foregoing summary of the invention, and will not be repeated here. Among the system components of the whole single sign-on system, the login request proxy page, the login verification proxy page, the login verification HTTP plug-in, the i...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention relates to a single sign-on integrated method for Form identity authentication in a single sign-on system. The single sign-on system comprises a Web application program, a Web server, a login request proxy page, a login authentication proxy page, a login authentication HTTP (hypertext transfer protocol) plug-in, a browser, an identity service system, a master account database and a master-slave account binding database. The method includes that the login request proxy page receives and acquires an HTTP request of the login page to guide a user not logging in to log in the identity service system; the identity service system submits a security token authenticating identity of the user to an account name and a password authentication URL (uniform resource locator) of the Web application system to be accessed by the user through the browser after performing the identity authentication of the user; the login authentication proxy page or the HTTP plug-in completes the security token authentication and adds the local account name and password of the Web application system to the HTTP request after receiving or intercepting the HTTP request submitted to the account name and the password authentication URL, so that the user can log in the Web application system.

Description

technical field [0001] The invention belongs to the technical field of identity authentication and access control of information security, in particular to a single sign-on integration method for Form identity authentication in a single sign-on system. Background technique [0002] With the development of enterprise e-commerce and office informatization, enterprises and organizations have deployed a large number of information systems (hereinafter collectively referred to as application systems) that provide various specific functions. To solve the problem of different account names and passwords (also known as user names and passwords) in the application system, people have proposed a single sign-on (Singie Sign On) technology. The so-called single sign-on means that the user only needs to use one identity credential (such as an account name, password, or a digital certificate, etc.) to complete online identity authentication (that is, login login) in an online system, and ...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
IPC IPC(8): H04L29/06H04L9/32
Inventor 龙毅宏郭浩平吴志奇王亚龙唐志红许明刘旭张海松
Owner WUHAN UNIV OF TECH
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Patsnap Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Patsnap Eureka Blog
Learn More
PatSnap group products

Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.

© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com