Nothing Special   »   [go: up one dir, main page]

CN114615084B - Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene - Google Patents

Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene Download PDF

Info

Publication number
CN114615084B
CN114615084B CN202210375427.4A CN202210375427A CN114615084B CN 114615084 B CN114615084 B CN 114615084B CN 202210375427 A CN202210375427 A CN 202210375427A CN 114615084 B CN114615084 B CN 114615084B
Authority
CN
China
Prior art keywords
single sign
service
logout
user
token
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN202210375427.4A
Other languages
Chinese (zh)
Other versions
CN114615084A (en
Inventor
祁周腾
赵轩
王涛
高泽
刘聪睿
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Xian Thermal Power Research Institute Co Ltd
Xian TPRI Power Station Information Technology Co Ltd
Original Assignee
Xian Thermal Power Research Institute Co Ltd
Xian TPRI Power Station Information Technology Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Xian Thermal Power Research Institute Co Ltd, Xian TPRI Power Station Information Technology Co Ltd filed Critical Xian Thermal Power Research Institute Co Ltd
Priority to CN202210375427.4A priority Critical patent/CN114615084B/en
Publication of CN114615084A publication Critical patent/CN114615084A/en
Application granted granted Critical
Publication of CN114615084B publication Critical patent/CN114615084B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0815Network architectures or network communication protocols for network security for authentication of entities providing single-sign-on or federations
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/0807Network architectures or network communication protocols for network security for authentication of entities using tickets, e.g. Kerberos
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/08Network architectures or network communication protocols for network security for authentication of entities
    • H04L63/083Network architectures or network communication protocols for network security for authentication of entities using passwords
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/01Protocols
    • H04L67/02Protocols based on web technology, e.g. hypertext transfer protocol [HTTP]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/141Setup of application sessions
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L67/00Network arrangements or protocols for supporting network services or applications
    • H04L67/14Session management
    • H04L67/143Termination or inactivation of sessions, e.g. event-controlled end of session
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L69/00Network arrangements, protocols or services independent of the application payload and not provided for in the other groups of this subclass
    • H04L69/16Implementation or adaptation of Internet protocol [IP], of transmission control protocol [TCP] or of user datagram protocol [UDP]
    • H04L69/161Implementation details of TCP/IP or UDP/IP stack architecture; Specification of modified or new header fields
    • H04L69/162Implementation details of TCP/IP or UDP/IP stack architecture; Specification of modified or new header fields involving adaptations of sockets based mechanisms

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Computer Security & Cryptography (AREA)
  • Computer Hardware Design (AREA)
  • Computing Systems (AREA)
  • General Engineering & Computer Science (AREA)
  • Information Transfer Between Computers (AREA)
  • Computer And Data Communications (AREA)

Abstract

After the user inputs an account number and the password is successfully verified, a session and a token are created, then a ticket is submitted to be verified to obtain jwt token, jwt token is stored in sessionStorage, jwt token is carried in a subsequently sent call request, current user information is obtained, and then connection is established with a Websocket server. The user of the invention invokes single sign-on cancellation operation in a certain service system, pushes cancellation information through the Websocket server, and executes cancellation operation, thereby realizing the consistency of cancellation operation, improving user experience and having strong practicability.

Description

Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene
Technical Field
The invention belongs to the field of integrated systems, and particularly relates to a single sign-on and logout method, a system, electronic equipment and a storage medium applied to a front-end and back-end separated scene.
Background
Along with the continuous development and construction of information systems, a plurality of sets of information systems exist in enterprises at the same time, and each set of information system needs to perform user account management, login authentication, resource access authorization and other similar operations, so that a single sign-on system (SSO) is generally used, information systems in different periods are constructed, and the single sign-on integration modes of the information systems are different. If the Web application is a system adopting a front-end and back-end separation mode, and the back-end system is a stateless service, a JWT token is generally used as a login credential between the front-end system and the back-end system, but when the JWT token is used, some problems exist in logging out (logout), such as when a user logs out in an a system for single sign-on, the logged-out B system of the user also needs to log out of a login state, but the validity of the login states of the front-end systems depends on the acquired JWT token, and the user has access to the back-end resource all the time within the validity period of the JWT token, so that a method and a system need to be designed to realize the consistency of the logging-out operation and improve the user experience.
Disclosure of Invention
The invention aims to overcome the defects and provide a single sign-on logout method, a system, electronic equipment and a storage medium applied to a front-end and back-end separation scene, and the problem of front-end logout is solved by adding a websocket pushing mechanism, so that consistency of logout operation is realized, and user experience is improved.
In order to achieve the above purpose, a single sign-on logout method applied to a front-end and back-end separated scene, the login comprises the following steps:
Inputting an account number and a password, and creating a session and a token according to the account number and the password;
verifying the ticket parameters, and obtaining jwttoken after verification is passed;
Jwttoken is stored sessionStorage;
continuously receiving a call request carrying jwt token, and verifying user identity information;
Establishing connection with a Websocket server to finish user login;
Logging out comprises the following steps:
pushing a logout message through the Websocket server according to the logout login command, and executing logout login operation.
When performing logout login:
Clearing sessionStorage and cookie information;
clearing session and token of the user;
and returning to the designated page.
When logging out, the method for logging out other integrated single sign-on business systems is as follows:
Clearing sessionStorage and cookie information of the current system;
Clearing session and token of the user in the current system;
For other business systems which are integrated with single sign-on and have the user logged in, the session and the token of the user are cleared;
pushing a logout message through a Websocket server;
Clearing sessionStorage and cookie information;
and returning to the designated page.
A single sign-on logout system for a front-end and back-end split scenario, comprising:
the session token creation module is used for inputting an account number and a password and creating a session and a token according to the account number and the password;
the parameter verification module is used for verifying the ticket parameters, and jwt token is obtained after verification is passed;
a storage module for storing jwt token in sessionStorage;
the user identity information verification module is used for continuously receiving the call request carrying jwt token and verifying the user identity information;
The connection establishment module is used for establishing connection with the Websocket server and completing user login;
And the logout execution module is used for pushing a logout message through the Websocket server according to the logout login command and executing logout login operation.
Further comprises:
The current system clearing module is used for clearing sessionStorage and cookie information of the current system and clearing session and tokens of users in the current system;
and the jump module is used for returning to the appointed page.
Further comprises:
the back-end service clearing module is used for clearing session and tokens of the user;
The front-end service clearing module is used for clearing sessionStorage and cookie information for other integrated single sign-on business systems;
And the cancellation information pushing module is used for pushing cancellation information through the Websocket server.
An electronic device, comprising: a processor; a memory for storing computer program instructions; and the method is used for realizing a single sign-on logout method applied to a front-end and back-end separated scene when the computer program is executed.
A storage medium storing computer program instructions that, when loaded and executed by a processor, perform a single sign-on logout method applied to a front-end and back-end split scenario.
Compared with the prior art, after the user inputs an account number and successfully verifies a password, a session and a token are created, then a ticket is submitted to verify to obtain jwt token, jwt token is stored in sessionStorage, the subsequently sent call requests all carry jwt token, current user information is obtained, and then connection is established with a Websocket server. The user of the invention invokes single sign-on cancellation operation in a certain service system, pushes cancellation information through the Websocket server, and executes cancellation operation, thereby realizing the consistency of cancellation operation, improving user experience and having strong practicability.
Drawings
FIG. 1 is a flow chart of a single sign-on authentication login process of the present invention;
FIG. 2 is a flow chart of a single sign-on logout process of the present invention;
FIG. 3 is a flow chart of a single sign-on logout message push of the present invention;
Fig. 4 is a system diagram of the present invention.
Detailed Description
In order that those skilled in the art will better understand the present invention, a technical solution in the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in which it is apparent that the described embodiments are only some embodiments of the present invention, not all embodiments. All other embodiments, which can be made by those skilled in the art based on the embodiments of the present invention without making any inventive effort, shall fall within the scope of the present invention.
Referring to fig. 1, the login in the present invention comprises the following steps:
1) The user requests to access any service system through the browser, and front-end service of the service system judges that the current user skips to the single sign-on system when not logged in;
2) The single sign-on system returns to the login page when judging that the current user is not logged in;
3) The user submits the login page after inputting the account number and the password, the single sign-on system server creates a session and a token after verification is successful, and then jumps back to the front page of the service system and carries the ticket parameter;
4) The front-end page submits a ticket to the back-end service of the business system, the back-end service verifies the ticket through the single sign-on client and the single sign-on system, jwt token is obtained after verification is passed, and then the ticket is returned to the front-end page;
5) The front-end page stores jwt token into sessionStorage, the subsequent http request header sent by the front-end to the back-end service is carried jwt token, and the back-end service judges jwt token the validity and identifies the user identity;
6) The front end calls a back end service to acquire current user information, and then establishes connection with a Websocket server to complete a user single sign-on process.
Referring to fig. 2, the login logout in the present invention comprises the following steps:
1) Clicking single sign-on and logout operation by a user on a front-end page of a service system, executing information such as cleaning cookie, sessionStorage and the like by the front end, and finally jumping to the single sign-on system;
2) The single sign-on system executes the operation of cleaning the current user session and the token, invokes the back-end service of other business systems which the current user has logged in, and executes the logout operation;
3) Jump back to the login page or the designated page of the single sign-on system.
Referring to fig. 3, the present invention further includes the following steps in the logout process of other service systems:
1) When a user calls single sign-on logout operation in a certain service system, if the user accesses other integrated single sign-on service systems before, the single sign-on system calls back-end service logout addresses registered by the service systems;
2) The back-end service executes corresponding cleaning work and pushes a logout message to the front-end through the Websocket service end;
3) And the front end executes the logout operation after receiving the message.
Referring to fig. 4, a single sign-on logout system for a front-end and back-end split scenario includes:
the session token creation module is used for inputting an account number and a password and creating a session and a token according to the account number and the password;
the parameter verification module is used for verifying the ticket parameters, and jwt token is obtained after verification is passed;
a storage module for storing jwt token in sessionStorage;
the user identity information verification module is used for continuously receiving the call request carrying jwt token and verifying the user identity information;
The connection establishment module is used for establishing connection between the client and the Websocket server and completing user login;
And the logout execution module is used for pushing a logout message through the Websocket server according to the logout login command and executing logout login operation.
The current system clearing module is used for clearing sessionStorage and cookie information of the current system and clearing session and tokens of users in the current system;
and the jump module is used for returning to the appointed page.
The back-end service clearing module is used for clearing session and tokens of the user;
The front-end service clearing module is used for clearing sessionStorage and cookie information for other integrated single sign-on business systems;
And the cancellation information pushing module is used for pushing cancellation information through the Websocket server.
An electronic device, comprising: a processor; a memory for storing computer program instructions; and the method is used for realizing a single sign-on logout method applied to a front-end and back-end separated scene when the computer program is executed.
A storage medium storing computer program instructions that, when loaded and executed by a processor, perform a single sign-on logout method applied to a front-end and back-end split scenario.
Examples:
referring to fig. 1, the present invention includes the following units:
the single sign-on system provides functions of user sign-on authentication, access authentication, jwt token generation and the like, and provides a client for service system integration;
the Websocket server pushing system is responsible for carrying out bidirectional real-time communication with the Web front-end system;
The front-end service of the business system mainly comprises a user interaction interface which is responsible for data presentation and performs data interaction with the back-end service through an Ajax request;
The service system back-end service is mainly responsible for complex service logic realization and service data maintenance and management and provides a Restful interface.
The specific process of single sign-on comprises the following steps:
Referring to fig. 1, a browser accesses a front end Web service website of a business system a, after loading a page, judging that a current user is not logged in (without a local jwt token), jumping to a single sign-on system, judging that the current user is not logged in (without related session and token), returning to a login page, submitting the user after the login page inputs an account number and a password, creating session and token by a service end of the single sign-on system after successful verification, then jumping back to the front end page and carrying a ticket parameter, submitting the ticket to a back end service of the business system, verifying by the back end service through the single sign-on client and the single sign-on system, obtaining jwt token after verification, returning to the front end page, storing jwt token in sessionStorage by the front end page, judging jwt token whether to be effective and identifying a user identity by the subsequent http request header called by an interface sent by the front end to the back end service, then executing corresponding interface logic and returning data to the front end, calling the back end service interface to acquire current user information, then establishing a successful business system a with the socket service end.
The user accesses the front end Web service website of the integrated single sign-on service system B, judges that the user is not logged in currently (no local jwt token) after the page is loaded, jumps to the single sign-on system, judges that the current user is logged in (relevant session and token exist), then jumps back to the front end page again and carries the token parameter, and submits the token to the back end service by the front end page, and the subsequent flow is the same as the login process of the service system A, wherein the main difference is that the account password is not required to be input when the single sign-on system is accessed at the present time, and jwt token can be obtained. The front-end service of the service system B is also connected with the Websocket server, and the user successfully logs in the service system B.
The specific process of single sign-on logout comprises the following steps:
Referring to fig. 2 and fig. 3, when the service system A performs A single sign-on and logout operation, the front end performs information such as clearing cookie, sessionStorage, and finally jumps to the single sign-on system, and the single sign-on system performs the operation of clearing the current user session and token, jumps back to the login page or the designated page of the single sign-on system. If the user logs in the service system B before, the single sign-on system can call the back end service address registered by the service system B at the same time when logging out, the back end service executes corresponding cleaning work, the logging-out message is pushed to the front end through the Websocket service end, the front end executes cleaning cookie, sessionStorage and other information after receiving the message, then the user turns to the single sign-on system or the appointed page, and the user successfully logs out of all the logged-in systems.
It should be noted that, for simplicity of description, the foregoing method embodiments are all described as a series of acts, but it should be understood by those skilled in the art that the present invention is not limited by the order of acts described, as some steps may be performed in other orders or concurrently in accordance with the present invention. Further, those skilled in the art will appreciate that the embodiments described in the specification are presently preferred embodiments, and that the acts are not necessarily required for the present invention.
Finally, it should be noted that: the above embodiments are only for illustrating the technical solution of the present invention, and are not limiting; although the invention has been described in detail with reference to the foregoing embodiments, it will be understood by those of ordinary skill in the art that: the technical scheme described in the foregoing embodiments can be modified or some technical features thereof can be replaced by equivalents; such modifications and substitutions do not depart from the spirit and scope of the technical solutions of the embodiments of the present invention.

Claims (6)

1. A single sign-on logout method applied to a front-end and back-end separation scene is characterized in that the sign-on includes the following steps:
The user requests to access any service system through the browser, and front-end service of the service system judges that the current user skips to the single sign-on system when not logged in;
The single sign-on system returns to the login page when judging that the current user is not logged in;
The user submits the login page after inputting the account number and the password, the single sign-on system server creates a session and a token after verification is successful, and then jumps back to the front page of the service system and carries the ticket parameter;
the front-end page submits a ticket to the back-end service of the business system, the back-end service verifies the ticket through the single sign-on client and the single sign-on system, jwt token is obtained after verification is passed, and then the ticket is returned to the front-end page;
The front-end page stores jwt token into sessionStorage, the subsequent http request header sent by the front-end to the back-end service is carried jwt token, and the back-end service judges jwt token the validity and identifies the user identity;
The front end calls a back end service to acquire current user information, and then establishes connection with a Websocket server to complete a user single sign-on process;
Logging out comprises the following steps:
Clicking single sign-on and logout operation by a user on a front-end page of a service system, executing information such as cleaning cookie, sessionStorage and the like by the front end, and finally jumping to the single sign-on system;
The single sign-on system executes the operation of cleaning the current user session and the token, invokes the back-end service of other business systems which the current user has logged in, and executes the logout operation;
jumping back to a login page or a designated page of the single sign-on system;
The other business system logout in the logout login process further comprises the following steps:
1) When a user calls single sign-on logout operation in a certain service system, if the user accesses other integrated single sign-on service systems before, the single sign-on system calls back-end service logout addresses registered by the service systems;
2) The back-end service executes corresponding cleaning work and pushes a logout message to the front-end through the Websocket service end;
3) And the front end executes the logout operation after receiving the message.
2. A single sign-on logout system for a front-end and back-end split scenario, comprising:
the session token creation module is used for inputting an account number and a password and creating a session and a token according to the account number and the password;
the parameter verification module is used for verifying the ticket parameters, and jwt token is obtained after verification is passed;
a storage module for storing jwt token in sessionStorage;
the user identity information verification module is used for continuously receiving the call request carrying jwt token and verifying the user identity information;
The connection establishment module is used for establishing connection with the Websocket server and completing user login;
And the logout execution module is used for pushing a logout message through the Websocket server according to the logout login command and executing logout login operation.
3. A single sign-on logoff system for a front-end and back-end split scenario as claimed in claim 2, further comprising:
The current system clearing module is used for clearing sessionStorage and cookie information of the current system and clearing session and tokens of users in the current system;
and the jump module is used for returning to the appointed page.
4. A single sign-on logoff system for a front-end and back-end split scenario as claimed in claim 2, further comprising:
the back-end system cleaning module is used for cleaning session and tokens of the user;
The cancellation information pushing module is used for pushing cancellation information through the Websocket server;
And the front-end system clearing module is used for clearing sessionStorage and cookie information for other integrated single sign-on service systems.
5. An electronic device, comprising: a processor; a memory for storing computer program instructions; the method is characterized by the steps for realizing the single sign-on logout method applied to the front-end and back-end separated scene as claimed in claim 1 when the computer program is executed.
6. A storage medium storing computer program instructions which, when loaded and executed by a processor, perform the single sign-on-log-off method of claim 1 applied to a front-end and back-end split scenario.
CN202210375427.4A 2022-04-11 2022-04-11 Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene Active CN114615084B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN202210375427.4A CN114615084B (en) 2022-04-11 2022-04-11 Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN202210375427.4A CN114615084B (en) 2022-04-11 2022-04-11 Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene

Publications (2)

Publication Number Publication Date
CN114615084A CN114615084A (en) 2022-06-10
CN114615084B true CN114615084B (en) 2024-04-16

Family

ID=81868969

Family Applications (1)

Application Number Title Priority Date Filing Date
CN202210375427.4A Active CN114615084B (en) 2022-04-11 2022-04-11 Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene

Country Status (1)

Country Link
CN (1) CN114615084B (en)

Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20060067732A (en) * 2004-12-15 2006-06-20 한국전자통신연구원 Method of service logout in single sign on service using federated identity
CN106470190A (en) * 2015-08-19 2017-03-01 中兴通讯股份有限公司 A kind of Web real-time communication platform authentication cut-in method and device
US9699171B1 (en) * 2014-06-23 2017-07-04 Symantec Corporation Systems and methods for logging out of cloud-based applications managed by single sign-on services
CN107911357A (en) * 2017-11-09 2018-04-13 北京锐安科技有限公司 A kind of method, apparatus of single-sign-on, server and storage medium
CN111431838A (en) * 2019-01-09 2020-07-17 北京神州泰岳软件股份有限公司 Method and device for single-point login and single-point logout in cluster and API gateway
CN112468481A (en) * 2020-11-23 2021-03-09 西安西热电站信息技术有限公司 Single-page and multi-page web application identity integrated authentication method based on CAS
CN113347163A (en) * 2021-05-20 2021-09-03 远景智能国际私人投资有限公司 Single sign-on method, device, equipment and medium
CN114218552A (en) * 2021-11-16 2022-03-22 成都智鑫易利科技有限公司 Method for realizing uniform identity authentication of ultra-large user quantity by adopting service bus

Family Cites Families (3)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
US20060218628A1 (en) * 2005-03-22 2006-09-28 Hinton Heather M Method and system for enhanced federated single logout
US10511589B2 (en) * 2016-09-14 2019-12-17 Oracle International Corporation Single logout functionality for a multi-tenant identity and data security management cloud service
US10764273B2 (en) * 2018-06-28 2020-09-01 Oracle International Corporation Session synchronization across multiple devices in an identity cloud service

Patent Citations (8)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
KR20060067732A (en) * 2004-12-15 2006-06-20 한국전자통신연구원 Method of service logout in single sign on service using federated identity
US9699171B1 (en) * 2014-06-23 2017-07-04 Symantec Corporation Systems and methods for logging out of cloud-based applications managed by single sign-on services
CN106470190A (en) * 2015-08-19 2017-03-01 中兴通讯股份有限公司 A kind of Web real-time communication platform authentication cut-in method and device
CN107911357A (en) * 2017-11-09 2018-04-13 北京锐安科技有限公司 A kind of method, apparatus of single-sign-on, server and storage medium
CN111431838A (en) * 2019-01-09 2020-07-17 北京神州泰岳软件股份有限公司 Method and device for single-point login and single-point logout in cluster and API gateway
CN112468481A (en) * 2020-11-23 2021-03-09 西安西热电站信息技术有限公司 Single-page and multi-page web application identity integrated authentication method based on CAS
CN113347163A (en) * 2021-05-20 2021-09-03 远景智能国际私人投资有限公司 Single sign-on method, device, equipment and medium
CN114218552A (en) * 2021-11-16 2022-03-22 成都智鑫易利科技有限公司 Method for realizing uniform identity authentication of ultra-large user quantity by adopting service bus

Non-Patent Citations (5)

* Cited by examiner, † Cited by third party
Title
The study of multi-level authentication-based single sign-on system;Niu Ying; Zhao Yao; Zou Hua;2009 2nd IEEE International Conference on Broadband Network & Multimedia Technology;20091204;448-452 *
基于CAS协议单点登录系统的改进与实现;赵侃侃;戴佳男;;计算机与网络;20200512(09);73-76 *
基于CAS的门户单点登录方案;刘峰;王峥;曹华平;罗守山;;计算机系统应用(06);79-82 *
基于JASIG-CAS的SSO系统的研究与实现;赵晋;硕士电子期刊(第3期);第2-4章 *
基于SAML改进的单点登录模型研究;高昊江;肖田元;;计算机工程与设计(03);75-77 *

Also Published As

Publication number Publication date
CN114615084A (en) 2022-06-10

Similar Documents

Publication Publication Date Title
CN102546570B (en) Processing method and system for single sign-on
US11190501B2 (en) Hybrid single sign-on for software applications and services using classic and modern identity providers
US8099768B2 (en) Method and system for multi-protocol single logout
CN105337949B (en) A kind of SSO authentication method, web server, authentication center and token verify center
CN104320423B (en) Single-sign-on lightweight implementation method based on Cookie
CN110086822A (en) The realization method and system of unified identity authentication strategy towards micro services framework
CN110493308B (en) Distributed consistency system session method and device, storage medium and server
CN104539615B (en) Cascade connection authentication method based on CAS
US9584615B2 (en) Redirecting access requests to an authorized server system for a cloud service
CN112385191A (en) Middle layer messaging system
WO2009050058A1 (en) Browser-based logoff
US9332433B1 (en) Distributing access and identification tokens in a mobile environment
CN102882903A (en) Method and system for acquiring multi-site application information
JP2006502496A (en) Method and system for communicating in a client-server network
CN106331003B (en) The access method and device of application door system on a kind of cloud desktop
CN103036902A (en) Login control method and login control system based on two-dimension code
CN112800411A (en) Multi-protocol and multi-mode supporting safe and reliable identity authentication method and device
CN110232265A (en) Dual-identity authentication method, apparatus and system
CN116170234B (en) Single sign-on method and system based on virtual account authentication
CN110069909A (en) It is a kind of to exempt from the close method and device for logging in third party system
CN107872445A (en) Access authentication method, equipment and Verification System
CN113821784A (en) Multi-system single sign-on method and device and computer readable storage medium
CN106161356B (en) Method and system for rapidly logging in website through client
CN108683651A (en) A kind of single-point logging method, server-side and system
CN114615084B (en) Single sign-on logout method, system, electronic equipment and storage medium applied to front-end and back-end separation scene

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant