Summary of the invention
In order to effectively control permission of the user on business platform and promote the safety of business platform account, the present invention is mentionedA kind of method, business platform and system for controlling user right is supplied.
To achieve the goals above, the present invention provides a kind of methods for controlling user right, wherein this method comprises:
The log-on message of user's input is obtained, the log-on message includes: login account or associated with login accountFirst terminal number;First terminal number associated with the login account is obtained according to the login account in the log-on messageCode, and the first terminal number that will acquire is sent to authentication platform, or directly by described in the log-on message withThe associated first terminal number of login account is sent to authentication platform, by the authentication platform to the first terminal numberState is authenticated, wherein the state of the first terminal number includes: normal operating condition and non-normal use state;It connectsThe state of the first terminal number of the authentication platform feedback is received, and institute is determined according to the state of the first terminal numberState operating right of the user on the business platform.
Optionally, if the log-on message of the user input obtained is login account, correspondingly, the method is also wrappedIt includes: detecting whether the login account has associated first terminal number, if the login account has associated first endNumber is held, then enters and first terminal number associated with the login account is obtained according to the login account in the log-on messageCode, and the step of first terminal number that will acquire is sent to authentication platform.
Optionally, if the login account does not have associated first terminal number, the method also includes: prompt userBy the login account and second terminal number-associated;Obtain user the login account is related to the second terminal numberFirst association request of connection;First association request described in response, the login account is associated with the second terminal number.
Optionally, the first association request described in the response is related to the second terminal number by the login accountConnection, specifically includes: Xiang Suoshu second terminal number sends verification information;If getting the described of the second terminal number feedbackVerification information, then it is the login account is associated with the second terminal number.
Optionally, if the state of the first terminal number is non-normal use state, correspondingly, it is flat to receive the certificationAfter the state of the first terminal number of platform feedback, the method also includes: it releases the login account and is stepped on describedRecord the incidence relation between the associated first terminal number of account;Prompt user by the login account and third terminal numberAssociation;User is obtained by the login account the second association request associated with the third terminal number;Described in responseTwo association requests, the terminal account is associated with the third terminal number.
Optionally, the second association request described in the response is related to the third terminal number by the terminal accountConnection, specifically includes: Xiang Suoshu third terminal number sends verification information;If getting the described of the third terminal number feedbackVerification information, then it is the login account is associated with the third terminal number.
According to another aspect of the invention, a kind of business platform for controlling user right, the business platform are additionally providedInclude: acquisition module, for obtain user input log-on message, the log-on message include: login account or with log in accountNumber associated first terminal number;Sending module is stepped on for being obtained according to the login account in the log-on message with describedThe associated first terminal number of account is recorded, and the first terminal number that will acquire is sent to authentication platform, or directlyFirst terminal number associated with login account described in the log-on message is sent to authentication platform, by the certificationPlatform authenticates the state of the first terminal number, wherein the state of the first terminal number includes: normal useState and non-normal use state;Receiving module, the shape of the first terminal number for receiving the authentication platform feedbackState, and operating right of the user on the business platform is determined according to the state of the first terminal number.
Optionally, the business platform further includes detection module, for detect the login account whether have it is associatedFirst terminal number triggers the sending module if the login account has associated first terminal number.
Optionally, the business platform further includes operation module, for prompting user that the login account and second is wholeHold number-associated;User is obtained by the login account the first association request associated with the second terminal number;ResponseFirst association request, the login account is associated with the second terminal number.
Optionally, the operation module is further used for, and Xiang Suoshu second terminal number sends verification information;If gettingThe verification information of the second terminal number feedback, then it is the login account is associated with the second terminal number.
Optionally, the operation module is further used for, and releases the login account and associated with the login accountFirst terminal number between incidence relation;Prompt user by the login account and third terminal number-associated;It obtains and usesFamily is by the login account the second association request associated with the third terminal number;Second association request described in response,The terminal account is associated with the third terminal number.
Optionally, the operation module is further used for, and Xiang Suoshu third terminal number sends verification information;If gettingThe verification information of the third terminal number feedback, then it is the login account is associated with the third terminal number.
According to another aspect of the invention, a kind of system for controlling user right is additionally provided, which includes certificationThe business platform of platform and control user right, the business platform according to the login account in log-on message for will getFirst terminal number be sent to authentication platform, or directly by the first terminal associated with login account in log-on messageNumber is sent to authentication platform;The state for the first terminal number that the authentication platform is used to send the business platformIt is authenticated, and the state of the first terminal number after certification is fed back to the business platform, wherein described first eventuallyThe state for holding number includes: normal operating condition and non-normal use state;The business platform is also used to, and receives the certificationThe state of the first terminal number of platform feedback, and determine the user in institute according to the state of the first terminal numberState the operating right on business platform.
The beneficial effects of the present invention are:
The present invention by by according to acquired in the login account in log-on message it is associated with login account first eventuallyEnd number is sent to authentication platform, or directly sends the first terminal number associated with login account in log-on messageIt to authentication platform, is authenticated by state of the authentication platform to first terminal number, so that it is determined that the shape of the first terminal numberState is normal operating condition either non-normal use state, finally according to the shape of the first terminal number of authentication platform feedbackState determines operating right of the user on business platform.The present invention is due to the associated first terminal number of login accountState is authenticated, and is assigned different operation of the user on business platform according to the different conditions of first terminal number and weighedLimit, is effectively controlled permission of the user on business platform, improves the safety of business platform account.
Specific embodiment
Exemplary embodiments of the present disclosure are described in more detail below with reference to accompanying drawings.Although showing the disclosure in attached drawingExemplary embodiment, it being understood, however, that may be realized in various forms the disclosure without should be by embodiments set forth hereIt is limited.On the contrary, these embodiments are provided to facilitate a more thoroughly understanding of the present invention, and can be by the scope of the present disclosureIt is fully disclosed to those skilled in the art.
As shown in Figure 1, to control the key step flow chart of the method for user right in the embodiment of the present invention, including such asLower step:
Step S101, obtains the log-on message of user's input, and log-on message includes: login account or related to login accountThe first terminal number of connection.
In the present embodiment, business platform obtains the log-on message of user's input, which can be stepping on for userAccount is recorded, first terminal number associated with login account is also possible to.Specifically, due to mobile phone in real life generalAll over property and practicability, which can be phone number associated with login account.
Step S102 obtains first terminal number associated with login account according to the login account in log-on message,And the first terminal number that will acquire is sent to authentication platform, or directly will be associated with login account in log-on messageFirst terminal number is sent to authentication platform, is authenticated by state of the authentication platform to first terminal number.
In the present embodiment, if the log-on message that business platform is got is login account, whether login account is detectedThere is associated first terminal number, if login account has associated first terminal number, according to stepping in log-on messageAssociated with login account first for recording account and obtaining first terminal number associated with the login account, and will acquire is eventuallyEnd number is sent to authentication platform, is authenticated by state of the authentication platform to first terminal number, wherein first terminal numberState include normal operating condition and non-normal use state, specifically, shutting down, pin number etc. can all be classified as non-normal use shapeState.
If the log-on message that business platform is got is first terminal number associated with login account, will directly step onFirst terminal number associated with login account in record information is sent to authentication platform, by authentication platform pair and login accountThe state of associated first terminal number is authenticated.
Specifically, the login account associated first is eventually due to mobile phone generality in real life and practicabilityHolding number can be phone number, and authentication platform can be mobile phone operators server.When business platform will be with login account phaseAfter associated phone number is sent to mobile phone operators server, mobile phone operators server can be to the state of the phone numberIt is authenticated, it can authenticating the phone number is in the non-normal uses state such as normal operating condition or shutdown, pin number.In addition, business platform is connected directly with mobile phone operators server, phone number is obtained by mobile phone operators server at any timeThe convenience of state, business platform can timely and effectively obtain the different conditions of phone number.
Step S103 receives the state of the first terminal number of authentication platform feedback, and according to the shape of first terminal numberState determines operating right of the user on business platform.
In the present embodiment, after state of the authentication platform to first terminal number authenticates, authentication platform will be authenticatedAs a result it feeds back on business platform, specifically, the state of termination number includes normal operating condition and non-normal use state;IndustryThe state of the first terminal number for platform reception authentication platform feedback of being engaged in, and determine that user exists according to the state of first terminal numberOperating right on business platform determines difference of the user on business platform according to the difference of the state of first terminal numberOperating right.
Specifically, when first terminal number is phone number, when authentication platform is mobile phone operators server, cell phone carrierQuotient's server feeds back the state of the phone number after certification to business platform, and business platform can be according to mobile phone operatorsThe non-normal uses state such as the normal operating condition of the phone number of server authentication or shutdown, pin number, determines user in businessDifferent operating rights on platform.The present invention is by passing through mobile phone operators server before user's registering service platformThe state of phone number associated with login account is authenticated, and is determined according to the state of the phone number after certificationOperating right of the user on business platform is effectively controlled permission of the user on business platform, and it is flat to improve businessThe safety of account number, and by the way that business platform and mobile phone operators to be connected directly, using mobile phone operators server asAuthentication platform can control the different conditions of phone number at any time, improve the accuracy of the state of acquired phone numberAnd timeliness.
Operating right of the user on business platform, which is lifted, to be determined according to the state of first terminal number to business platform at thisExample explanation.
If the state of first terminal number is normal operating condition, i.e. the first terminal number during normal use, then makesAll operating rights that business platform is assigned can be enjoyed with the user of the first terminal number, wherein including access authority,A series of permissions such as subscription rights and support permission.
If the state of first terminal number is non-normal use state, i.e. the first terminal number may arrearage or pinNumber, then it is merely able to access to business platform using the user of the first terminal number, and cannot be completed on business platformThe operations such as order goods, payment, comment, i.e., the user only has access authority to business platform, without subscription rights, branchPay the sequence of operations permissions such as permission.
Fig. 2 indicates the entire flow chart of steps that the method for user right is controlled in the embodiment of the present invention, including walks as followsIt is rapid:
Step S201, user input log-on message, wherein log-on message includes: login account or related to login accountThe first terminal number of connection.
In the present embodiment, user inputs log-on message on business platform, specifically, log-on message can be login accountNumber or first terminal number associated with login account.Also, due to mobile phone generality in real life and practicability,The first terminal number can be phone number.
Step S202, business platform obtain the log-on message of user's input.
In the present embodiment, business platform obtains the log-on message of user's input, specifically, the log-on message can be to step onRecord account or first terminal number associated with login account.Also, due to the generality and reality of mobile phone in real lifeWith property, which can be phone number.
Step S203, the first terminal number obtained according to the login account in log-on message is sent to by business platform to be recognizedPlatform is demonstrate,proved, or the first terminal number associated with login account in log-on message is directly sent to authentication platform.
In the present embodiment, if the log-on message that business platform is got is login account, whether login account is detectedThere is associated first terminal number, if login account has associated first terminal number, according to stepping in log-on messageAssociated with login account first for recording account and obtaining first terminal number associated with the login account, and will acquire is eventuallyEnd number is sent to authentication platform, is authenticated by state of the authentication platform to first terminal number, wherein first terminal numberState include normal operating condition and non-normal use state, specifically, shutting down, pin number etc. can all be classified as non-normal use shapeState.
If the log-on message that business platform is got is first terminal number associated with login account, will directly step onFirst terminal number associated with login account in record information is sent to authentication platform, by authentication platform pair and login accountThe state of associated first terminal number is authenticated.Specifically, the authentication result of termination number state includes: normal useState and non-normal use state.
Specifically, the login account associated first is eventually due to mobile phone generality in real life and practicabilityHolding number can be phone number, and authentication platform can be mobile phone operators server.When business platform will be with login account phaseAfter associated phone number is sent to mobile phone operators server, mobile phone operators server can be to the state of the phone numberIt is authenticated, it can authenticating the phone number is in the non-normal uses state such as normal operating condition or shutdown, pin number.
Step S204, authentication platform authenticate the state of first terminal number.
Specifically, the authentication result of first terminal number state includes: normal operating condition and non-normal use state.WhenFirst terminal number is phone number, and when authentication platform is mobile phone operators server, mobile phone operators server is then right at any timeThe state of phone number is authenticated.Using mobile phone operators server as authentication platform, phone number can be controlled at any timeDifferent conditions improve the accuracy and timeliness of the state of acquired phone number.
Step S205, authentication platform feed back the state of first terminal number to business platform.
Step S206, business platform receive the state of the first terminal number of authentication platform feedback, and according to first terminalThe state of number determines operating right of the user on business platform.
In the present embodiment, business platform receives the state of the first terminal number of authentication platform feedback, and according to firstThe state of termination number determines operating right of the user on business platform, i.e., really according to the difference of the state of first terminal numberDetermine different operating rights of the user on business platform.
Specifically, when first terminal number is phone number, when authentication platform is mobile phone operators server, cell phone carrierQuotient's server feeds back the state of the phone number after certification to business platform, and business platform can be according to mobile phone operatorsThe non-normal uses state such as the normal operating condition of the phone number of server authentication or shutdown, pin number, determines user in businessDifferent operating rights on platform.The present invention is by passing through mobile phone operators server before user's registering service platformThe state of phone number associated with login account is authenticated, and is determined according to the state of the phone number after certificationOperating right of the user on business platform is effectively controlled permission of the user on business platform, and it is flat to improve businessThe safety of account number, and by the way that business platform and mobile phone operators to be connected directly, using mobile phone operators server asAuthentication platform can control the different conditions of phone number at any time, improve the accuracy of the state of acquired phone numberAnd timeliness.
Operating right of the user on business platform, which is lifted, to be determined according to the state of first terminal number to business platform at thisExample explanation.
If the state of first terminal number is normal operating condition, i.e. the first terminal number during normal use, then makesAll operating rights that business platform is assigned can be enjoyed with the user of the first terminal number, wherein including access authority,A series of permissions such as subscription rights and support permission.
If the state of first terminal number is non-normal use state, i.e. the first terminal number may arrearage or pinNumber, then it is merely able to access to business platform using the user of the first terminal number, and cannot be completed on business platformThe operations such as order goods, payment, comment, i.e., the user only has access authority to business platform, without subscription rights, branchPay the sequence of operations permissions such as permission.
When login account does not have associated first terminal number, this method further includes following steps:
Step S207, business platform prompt user that login account is associated with second terminal number.
Specifically, second terminal number can be any one termination number, but be to be able to so that login account withSecond terminal number can be successfully associated, and the state of second terminal number should be in normal operating condition.Optionally, when firstWhen termination number is phone number, which is similarly phone number.
Step S208, user send login account the first association request associated with second terminal number.
Step S209, business platform obtain user and ask login account the first association associated with second terminal numberIt asks, the first association request of response is associated with second terminal number by login account.
In the present embodiment, when business platform gets user for login account associated with second terminal number firstAfter association request, second terminal number of the business platform into the first association request sends verification information, the second terminal numberReceive after verification information to business platform feedback validation information, if business platform get second terminal number feedback this testDemonstrate,prove information, then it is login account is associated with the second terminal number.
Preferably, business platform by login account it is associated with second terminal number after, can also include the following steps:
Step S210, business platform send to user and are successfully associated response.
In the present embodiment, business platform sends login account to user and second terminal number-associated successfully responds letterBreath.After user receives the response being successfully associated, illustrate that login account already has associated first terminal number, userIt can continue login process, and record operation log.
When the state of the associated first terminal number of login account be non-normal use state when, this method further include asLower step:
Step S211, business platform release the pass between login account and first terminal number associated with login accountConnection relationship, and prompt user by login account and third terminal number-associated.
In the present embodiment, when the state of the associated first terminal number of login account is non-normal use state,Business platform is first released from the incidence relation between login account and termination number associated with first login account, thisAfterwards, prompt user by login account information associated with third terminal number, wherein third terminal number can be except and step onRecord that account is associated, any one termination number other than the first terminal number in non-normal use state, stillIn order to enable login account to be successfully associated with third terminal number, the state of third terminal number be should be in normalUse state.Specifically, the third terminal number is similarly phone number when first terminal number is phone number.
Step S212, user send login account the second association request associated with third terminal number.
Step S213, business platform obtain user and ask login account the second association associated with third terminal numberIt asks, and the second association request of response, login account is associated with third terminal number.
In the present embodiment, when business platform gets user for login account associated with third terminal number secondAfter association request, third terminal number of the business platform into the second association request sends verification information, and third terminal number is receivedTo business platform feedback validation information after to verification information, if business platform gets the verifying letter of third terminal number feedbackBreath, then it is login account is associated with third terminal number.
Preferably, business platform by login account it is associated with third terminal number after, can also include the following steps:
Step S214, business platform send to user and are successfully associated response.
In the present embodiment, business platform sends login account to user and third terminal number-associated successfully responds letterBreath.After user receives login account and third terminal number-associated successfully responds, illustrate that login account already has phaseAssociated first terminal number, user can continue login process, and record operation log.
Fig. 3 indicates the structural block diagram that the business platform 300 of user right is controlled in the embodiment of the present invention, business platform300 specifically include that
Obtain module 301, for obtain user input log-on message, log-on message include: login account or with loginThe associated first terminal number of account;Sending module 302, for obtaining according to the login account in log-on message and logging in accountNumber associated first terminal number, and the first terminal number that will acquire is sent to authentication platform, or will directly log in and believeFirst terminal number associated with login account in breath is sent to authentication platform, by authentication platform to first terminal numberState is authenticated, wherein the state of first terminal number includes: normal operating condition and non-normal use state;Receive mouldBlock 303, the state of the first terminal number for receiving authentication platform feedback, and determined and used according to the state of first terminal numberOperating right of the family on business platform.
Optionally, business platform further includes detection module, for detecting whether login account has associated first terminalNumber triggers sending module 302 if login account has associated first terminal number.
Optionally, business platform further includes operation module, for prompting user to close login account and second terminal numberConnection;User is obtained by login account the first association request associated with second terminal number;The first association request of response, will step onIt is associated with second terminal number to record account.
Optionally, operation module is further used for, and sends verification information to second terminal number;If getting second terminalThe verification information of number feedback, then it is login account is associated with second terminal number.
Optionally, operation module is further used for, and releases login account and first terminal number associated with login accountIncidence relation between code;Prompt user by login account and third terminal number-associated;User is obtained by login account and theAssociated second association request of three termination numbers;The second association request of response is related to third terminal number by terminal accountConnection.
Optionally, operation module is further used for, and sends verification information to third terminal number;If getting third terminalThe verification information of number feedback, then it is login account is associated with third terminal number.
According to another aspect of the invention, a kind of system for controlling user right is additionally provided, which includes certificationThe business platform 300 of platform and control user right, business platform 300 are used to be obtained according to the login account in log-on messageTo first terminal number be sent to authentication platform, or directly by associated with login account first in log-on message eventuallyEnd number is sent to authentication platform;The state for the first terminal number that authentication platform is used to send business platform 300 is recognizedCard, and the state of the first terminal number after certification is fed back to business platform 300, wherein the state packet of first terminal numberIt includes: normal operating condition and non-normal use state;Business platform 300 is also used to, and receives the first terminal of authentication platform feedbackThe state of number, and operating right of the user on business platform 300 is determined according to the state of first terminal number.
Above-described is the preferred embodiment of the present invention, it should be pointed out that the ordinary person of the art is comeIt says, can also make several improvements and retouch under the premise of not departing from principle of the present invention, these improvements and modifications also existIn protection scope of the present invention.