Eureka AIR delivers breakthrough ideas for toughest innovation challenges, trusted by R&D personnel around the world.

Method, device and system for realizing universal single sign-on

A single sign-on and access system technology, applied in the field of communication, can solve problems such as system operation impact, difficulty in transformation, failure to realize single sign-on, etc., and achieve the effect of ensuring versatility

Active Publication Date: 2013-05-01
CHINA MOBILE GROUP JIANGSU
View PDF7 Cites 16 Cited by
  • Summary
  • Abstract
  • Description
  • Claims
  • Application Information

AI Technical Summary

Problems solved by technology

[0005] 1. The enterprise's internal information system environment is complex, and single sign-on products may not be able to support all systems
Many current single sign-on products need to install and deploy plug-ins on the access system server. Although there are many plug-ins, specific plug-ins need to be deployed for different types and versions of operating systems and server products. The number is still limited. Once the access system uses an application that is not supported by the single sign-on product, then the single sign-on cannot be achieved without changing the access system architecture
[0006] 2. Difficult transformation and heavy workload when replacing single sign-on products
Once the single sign-on product is replaced, all the systems connected to the single sign-on product need to be rebuilt according to the requirements of the new single sign-on product, followed by a lot of development and testing work, which will inevitably affect the system The operation brings impact, but also brings many uncontrollable factors
[0007] 3. It is not conducive to timely location of faults
Since the communication between the plug-in and the authentication server is invisible to the access system, it is difficult for the operator of the access system to simply determine whether the fault is related to the single sign-on product when a fault occurs

Method used

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
View more

Image

Smart Image Click on the blue labels to locate them in the text.
Viewing Examples
Smart Image
  • Method, device and system for realizing universal single sign-on
  • Method, device and system for realizing universal single sign-on
  • Method, device and system for realizing universal single sign-on

Examples

Experimental program
Comparison scheme
Effect test

Embodiment Construction

[0036] In practical applications, the character data of the authentication request provided by the single sign-on product (such as: the character data of the authentication request provided by the existing mature multiple single sign-on products) can be abstracted and encapsulated, and a common service middleware can be added layer (for example: the HTTP service middle layer, the following description will take the HTTP service middle layer as an example). Each access system interacts with the service middle layer instead of directly interacting with single sign-on products; and the service middle layer provides a common single sign-on method (such as: HTTP single sign-on method) to perform authority verification for each access system .

[0037] The present invention will be described in detail below in conjunction with the accompanying drawings and specific examples.

[0038] see figure 1 , figure 1 In , the HTTP service middle layer is located between the access system a...

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

PUM

No PUM Login to View More

Abstract

The invention discloses a method, a device and a system for realizing universal single sign-on. A service middle layer universal to different single sign-on products is arranged between an access system and a single sign-on authentication server; and when the service middle layer carries out authority authentication on the access system in a single sign-on mode, the service middle layer receives the access request of a user browser, the identity token contained in the visit request is submitted to the single sign-on authentication server for verification, and in addition, the authentication results returned by the single sign-on authentication server are received. Through the method, the device and the system, the interaction between each access system and the service middle layer is not the direct interaction with the single sign-on products, and in addition, the service middle layer provides the universal single sign-on mode, so the universality of the single sign-on is ensured, and the authority authentication can be carried out on each access system in a unified way.

Description

technical field [0001] The present invention relates to the communication field, in particular to a method, device and system for realizing universal single sign-on. Background technique [0002] As a general enterprise business integration solution, Single Sign On (SSO) has been widely used in enterprise internal information systems. A unified authentication system is required to implement single sign-on, and users must first pass authentication in the authentication system before accessing the application system. The authentication system records the user's login status after the user passes the authentication, and issues an identity token (Token) to the user's browser. When a user browser accesses an application system, the application system first obtains the identity token, then verifies the legitimacy of the identity token to the authentication server and obtains the user identity, and finally responds according to the verification result. [0003] To realize the abo...

Claims

the structure of the environmentally friendly knitted fabric provided by the present invention; figure 2 Flow chart of the yarn wrapping machine for environmentally friendly knitted fabrics and storage devices; image 3 Is the parameter map of the yarn covering machine
Login to View More

Application Information

Patent Timeline
no application Login to View More
Patent Type & Authority Applications(China)
IPC IPC(8): H04L29/08H04L29/06
Inventor 江卫冲王春华俞新华叶璐刘利明陈若鹏
Owner CHINA MOBILE GROUP JIANGSU
Who we serve
  • R&D Engineer
  • R&D Manager
  • IP Professional
Why Eureka
  • Industry Leading Data Capabilities
  • Powerful AI technology
  • Patent DNA Extraction
Social media
Eureka Blog
Learn More
PatSnap group products