CN112104641A - Login form conversion method and device, storage medium and electronic equipment - Google Patents

Abstract

The embodiment of the application provides a login form conversion method, a device, a storage medium and electronic equipment, wherein a conversion plug-in installed on a server is used for judging whether the server initiates 302 redirection when the server receives a request message sent by a browser, intercepting a response message sent to the browser by the server when the server initiates 302 redirection and the generated 302 redirection address conforms to the address format of a CAS (central authentication service), processing the response message according to the type of the request message to obtain a first response message, and sending the first response message to the browser, so that the conversion of 'CAS single sign-on based on webpage skipping' into 'CAS single sign-on based on webpage embedded iframe popup window' is realized, the advantages of non-invasiveness and universality are achieved, and the cost required for modifying a login flow is saved.

Description

Login form conversion method, device, storage medium and electronic device

technical field

The embodiments of the present application relate to the field of computer technologies, and in particular, to a login form conversion method, device, storage medium, and electronic device.

Background technique

The central authentication service (CAS) is a single sign-on method that should be widely used at present. In the CAS protocol, the user's identity authentication process needs to go through three browser jumps, specifically: when a user accesses a web application When the login resource is required, the browser will jump to the login authentication platform; after the user enters the correct login credentials in the login authentication platform, the browser jumps to the login ticket verification page of the web application, and the uniform resource location (uniform resource location) locator, URL) includes the user's login ticket stub; the web application transmits the login ticket stub to the login authentication platform for verification, and if the ticket stub is correct, the browser finally jumps to the resource that the user wants to access. During this process, the user will face a blank web page three times and wait for the browser to finish loading, resulting in an unsmooth user experience.

In order to improve the user's use fluency, in the prior art, by modifying the web page source code of the server web application, when the user accesses restricted resources through a browser, the CAS protocol completes the user's identity authentication in the form of a pop-up window.

However, the prior art has the problems of low versatility and difficulty in restoring the original login function.

SUMMARY OF THE INVENTION

Embodiments of the present application provide a login form conversion method, device, storage medium and electronic device, which are used to solve the problems of low versatility and difficulty in restoring the original login function in the prior art.

In the first aspect, an embodiment of the present application provides a login form conversion method, which is applied to a conversion plug-in installed on a server; the method includes:

When the server receives the request message sent by the browser, determine whether the server initiates 302 redirection;

When it is determined that the server initiates 302 redirection and the generated 302 redirection address conforms to the address format of the central authentication service CAS, intercepting the response message sent by the server to the browser;

processing the response message according to the type of the request message to obtain a first response message;

Send the first response message to the browser.

Optionally, according to the type of the request message, the response message is processed to obtain a first response message, including:

If the type of the request message is an asynchronous JavaScript and extensible markup language Ajax request, modify the hypertext transfer protocol HTTP status code in the header of the response message to 200;

An authentication event attribute and an authentication successful jump attribute are added to the header of the response packet, the attribute value of the authentication event attribute is the 302 redirect address, and the attribute value of the authentication successful jump attribute is all The login successfully jumps to the Uniform Resource Locator URL stored in the above server.

Optionally, according to the type of the request message, the response message is processed to obtain a first response message, including:

If the type of the request message is a non-asynchronous JavaScript and extensible markup language Ajax request, modify the hypertext transfer protocol HTTP status code in the header of the response message to 200;

adding an authentication-successful jump attribute to the header of the response message, and the attribute value of the authentication-successful jump attribute is the login-successful jump uniform resource locator URL stored in the server;

Filling the message body for the response message, the message body includes the code of the iframe-embedded login pop-up window and the code of the monitoring module, and the URL source of the iframe in the iframe-embedded login pop-up window is the 302 redirection address.

Optionally, the method further includes:

If it is determined that the server does not initiate 302 redirection, intercept the response message sent by the server to the browser;

Judging whether the content type of the message body of the response message is HTML format;

If the content type of the message body of the response message is HTML format, insert the code of the monitoring module into the message body of the response message to obtain the second response message;

Send the second response message to the browser.

In a second aspect, an embodiment of the present application provides a login form conversion method, which is applied to a browser of a terminal device, and the method includes:

Receive the first response message sent by the server;

processing the first response message to determine the monitoring module corresponding to the web page currently in the open state in the browser;

Utilize the monitoring module and the first response message to generate an iframe-embedded login pop-up window;

Using the monitoring module, according to the attribute value of the location attribute of the iframe in the login popup window embedded with the iframe, the login popup window embedded with the iframe is controlled to perform an operation corresponding to the attribute value.

Optionally, using the monitoring module and the first response message to generate an iframe-embedded login pop-up window, including:

The first response packet is processed by the monitoring module, and it is determined that the packet header of the first response packet includes an authentication success jump attribute, and the packet body of the first response packet includes an iframe-embedded The code of the login pop-up window, the attribute value of the authentication successful jump attribute is the login successful jump uniform resource locator URL, and the URL source of the iframe in the login pop-up window with the embedded iframe is the 302 redirect address;

Rendering the code of the login popup window embedded in the iframe to obtain the login popup window embedded in the iframe.

Optionally, using the monitoring module and the first response message to generate an iframe-embedded login pop-up window, including:

The first response packet is processed by the monitoring module, and it is determined that the packet header of the first response packet includes an authentication event attribute and an authentication successful jump attribute, and the attribute value of the authentication event attribute is 302. Orientation address, the attribute value of the authentication successful jump attribute is the login successful jump uniform resource locator URL;

The monitoring module constructs the login pop-up window embedded in the iframe according to the attribute value of the authentication event attribute.

Optionally, the method further includes:

receiving a second response message sent by the server, where the message body of the second response message includes the code of the monitoring module;

Correspondingly, the processing of the first response message to determine the monitoring module corresponding to the web page currently in the open state in the browser includes:

processing the first response message, and determining that the header of the first response message includes an authentication event attribute;

The code of the monitoring module in the message body of the second response message is instantiated to obtain the monitoring module corresponding to the web page currently in the open state in the browser.

Optionally, the processing of the first response message to determine the monitoring module corresponding to the web page currently in the open state in the browser includes:

processing the first response message, and determining that the header of the first response message does not include the authentication event attribute and the message body of the first response message includes the code of the monitoring module;

The code of the monitoring module in the message body of the first response message is instantiated to obtain the monitoring module corresponding to the web page currently in the open state in the browser.

Optionally, according to the attribute value of the location attribute of the iframe in the login pop-up window of the embedded iframe, before using the monitoring module to control the login pop-up window of the embedded iframe to perform the operation corresponding to the attribute value, The method also includes:

Use the monitoring module to control the login pop-up window of the embedded iframe to be in a hidden state;

Correspondingly, according to the attribute value of the location attribute of the iframe in the login pop-up window of the embedded iframe, using the monitoring module to control the login pop-up window of the embedded iframe to perform the operation corresponding to the attribute value, including:

Utilize the monitoring module to judge whether the attribute value of the location attribute of the iframe can become a successful login jump URL within a preset time threshold;

If the attribute value of the location attribute of the iframe cannot become a successful login jump URL within a preset time threshold, the monitoring module is used to control the login pop-up window display;

When the attribute value of the location attribute of the iframe changes, use the monitoring module to judge whether the attribute value of the location attribute of the iframe is equal to the successful login jump URL;

If the attribute value of the location attribute of the iframe is equal to the successful login redirection URL, the monitoring module is used to set the login popup window to a hidden state and control the current webpage to display an authentication success prompt message.

Optionally, the method further includes:

If the attribute value of the location attribute of the iframe can become a successful login jump URL within the preset time threshold, then when the attribute value of the location attribute of the iframe changes, the monitoring module is used to determine the value of the iframe. Whether the attribute value of the location attribute is equal to the successful login redirect URL;

If the attribute value of the location attribute of the iframe is the successfully redirected URL, the monitoring module is used to control the current webpage to display an authentication success prompt message.

In a third aspect, an embodiment of the present application provides a login form conversion device, including:

The processing unit is used to judge whether the server initiates 302 redirection when the server receives the request message sent by the browser; after determining that the server initiates 302 redirection and the generated 302 redirection address conforms to the central authentication service CAS When the address format is in the address format, intercept the response message sent by the server to the browser; process the response message according to the type of the request message to obtain the first response message;

A transceiver unit, configured to send the first response message to the browser.

In a fourth aspect, an embodiment of the present application provides a login form conversion device, including:

a transceiver unit, configured to receive the first response message sent by the server;

The processing unit is used to process the first response message, and determine the monitoring module corresponding to the web page currently in the open state in the browser; use the monitoring module and the first response message to generate an embedded iframe Login pop-up window; use the monitoring module to control the login pop-up window of the embedded iframe to perform the operation corresponding to the attribute value according to the attribute value of the location attribute of the iframe in the login pop-up window of the embedded iframe.

In a fifth aspect, an embodiment of the present application provides a server, including: a transceiver, a memory, and a processor; the memory is used to store a computer program, and the processor executes the computer program to implement the login described in the first aspect above Form conversion method.

In a sixth aspect, an embodiment of the present application provides a terminal device, including: a transceiver, a memory, and a processor; the memory is used to store a computer program, and the processor executes the computer program to achieve the above-mentioned second aspect The login form conversion method.

In a seventh aspect, an embodiment of the present application provides a storage medium, where the storage medium is used to store a computer program, and the computer program is used to implement the login form conversion method described in the first aspect above.

In an eighth aspect, an embodiment of the present application provides a storage medium, where the storage medium is used to store a computer program, and the computer program is used to implement the login form conversion method described in the second aspect above.

The login form conversion method, device, storage medium, and electronic device provided by the embodiments of the present application, through the conversion plug-in installed on the server, when the server receives the request message sent by the browser, it is determined whether the server initiates 302 redirection, and after determining When the server initiates a 302 redirect and the generated 302 redirect address conforms to the address format of the central authentication service CAS, it intercepts the response message sent by the server to the browser, processes the response message according to the type of the request message, and obtains the first a response message, send the first response message to the browser, and through the browser installed on the terminal device, when receiving the first response message sent by the server, process the first response message to determine the browser The monitoring module corresponding to the web page currently in the open state uses the monitoring module and the first response message to generate a login pop-up window with an embedded iframe, and uses the monitoring module according to the property value of the location attribute of the iframe in the login pop-up window with the embedded iframe. , control the login pop-up window embedded in the iframe to perform the operation corresponding to the attribute value, by installing the conversion plug-in on the server, without changing the source code of the server, the "CAS single sign-on based on web page jumping" is realized. ” is converted into “CAS single sign-on based on the iframe pop-up window embedded in the webpage”, through one-click installation or one-click uninstallation, the installation or uninstallation of the conversion plug-in on different servers can be realized. The operation is simple, and because the conversion plug-in does not invade the source code, saving the cost of retrofitting the login process.

Description of drawings

In order to illustrate the technical solutions in the present application or the prior art more clearly, the following briefly introduces the accompanying drawings required in the description of the embodiments or the prior art. Obviously, the accompanying drawings in the following description are the For some embodiments of the application, for those of ordinary skill in the art, other drawings can also be obtained based on these drawings without any creative effort.

1 is a schematic structural diagram of a login authentication system based on a central authentication service in the prior art;

2 is a schematic flowchart of Embodiment 1 of a method for converting a login form provided by an embodiment of the present application;

3 is a schematic flowchart of Embodiment 2 of a method for converting a login form provided by an embodiment of the present application;

FIG. 4 is a schematic structural diagram of Embodiment 1 of a login form conversion apparatus provided by an embodiment of the present application;

FIG. 5 is a schematic structural diagram of Embodiment 2 of a login form conversion device provided by an embodiment of the present application;

FIG. 6 is a schematic structural diagram of a server embodiment provided by the present application;

FIG. 7 is a schematic structural diagram of an embodiment of a terminal device provided by the present application.

Detailed ways

Exemplary embodiments will be described in detail herein, examples of which are illustrated in the accompanying drawings. Where the following description refers to the drawings, the same numerals in different drawings refer to the same or similar elements unless otherwise indicated. The implementations described in the illustrative examples below are not intended to represent all implementations consistent with this application. Rather, they are merely examples of apparatus and methods consistent with some aspects of the present application as recited in the appended claims.

The following will take the CAS login authentication system as an example to describe the technical solution of the present application in detail. It can be understood that the login form conversion method, device, storage medium and electronic device provided by the embodiments of the present application are also applicable to the use of other products to realize login Among the authenticated web systems, such as web systems based on QQ login and GitHub OAuth, there are no restrictions here.

In the prior art, in order to restrict users' access to protected service functions or resources, the CAS system needs to authenticate the user's identity, that is, login authentication, so as to ensure that only authorized users can access or use protected service functions or resources. , exemplarily, Figure 1 is a schematic structural diagram of a login authentication system based on a central authentication service in the prior art. As shown in Figure 1, the CAS login authentication system includes a terminal device (a browser is installed on it or has a connection with the browser). applications with the same function), unified authentication center, and web server, where the web server is used to install web applications (software that uses the account of the unified authentication center to log in), and there can be multiple web servers in the CAS login authentication system. The web servers correspond to different web applications. Take two web servers, web server A and web server B, as examples for illustration. Web server A and web server B are web servers corresponding to web application a and web application b respectively:

Scenario 1: When an unlogged user accesses the protected resources of Web server A for the first time, the entire login authentication process is as follows: Web server A determines whether the user is logged in through a filter, and when it is determined that the user is not logged in, redirects (302) to Unified authentication center, and send the redirection address to the browser; the browser initiates a redirection according to the redirection address, and enters the user's personal information (such as user name and password) in the login page returned by the unified authentication center; the unified authentication center verifies Whether the entered personal information is valid, after successful verification, the unified authentication center returns a special credential (login stub) to the browser; after the browser receives the login stub, it redirects to Web server A, and includes the login stub in the URL; Web server A takes out the login ticket stub through the filter, and sends the login ticket stub to the unified authentication center, so that the unified authentication center can verify whether the login ticket stub is valid; when the web server A receives a message from the unified authentication center that the login ticket is valid When the user's identity authentication is completed, the web server A displays the resources of the web application a requested by the user on the browser.

Scenario 2: When the user is accessing the resources of the software platform A, he suddenly initiates a request to access the resources on the web server B. The login authentication process is as follows: Since the user accesses the web server B for the first time, the web server B passes 302 Redirect the browser to the unified authentication center for login authentication; since the browser has used the unified authentication center for identity authentication before (when accessing Web server A), the unified authentication center will not return to the login page to obtain users Instead, it directly issues a login ticket to the browser and redirects the browser to Web server B. Web server B obtains the login ticket and sends it to the unified authentication center for verification. Display the resources of the software platform B requested by the user.

It can be seen from the above analysis that, in the CAS login authentication system, the first time an unlogged user accesses the resources of the web application that only need to log in to access the resources, the process of login authentication requires three browser jumps, namely: jump to The identity authentication page of the unified authentication center, jump to the web server login ticket stub verification page, and jump to the echo page after successful login. During this process, the user will face a blank web page three times and wait for the browser to finish loading, resulting in an unsmooth user experience.

In order to solve the shortcomings in the CAS login authentication process, a method is proposed in the prior art to modify the source code of the web page of the web application. When the user accesses the protected resource, the user's identity authentication is completed in the form of a pop-up window. This method, on the one hand, requires corresponding code modification operations for different servers of different enterprises, which is not universal. On the other hand, this method has code intrusion. Recovery, poor recoverability, and difficult operation.

The main idea of the technical solution of the present application: Based on the problems existing in the prior art, the present application provides a method for realizing login authentication through a conversion plug-in. The conversion of "CAS single sign-on for web page jumping" into "CAS single sign-on based on web page embedded iframe pop-up window" has the advantages of non-intrusiveness and versatility, and saves the cost of transforming the login process.

2 is a schematic flowchart of Embodiment 1 of a method for converting a login form provided by an embodiment of the present application. In this embodiment, a conversion plug-in is pre-installed on a Web server, and a browser is pre-installed on a terminal device. The method in this embodiment is applied to the Web Between the conversion plug-in of the server and the browser of the terminal device, as shown in FIG. 2 , the method of this embodiment includes:

S101. When the server receives the request message sent by the browser, the conversion plug-in determines whether the server initiates 302 redirection.

It can be seen from the above analysis that during the CAS login authentication process, if the user requests to access protected resources (resources that the user has permission to access only when the user is logged in) through the browser without logging in, when the server receives the request message, The CAS filter will trigger a 302 redirect, if the user accesses resources (including protected resources and other resources) through the browser in the logged-in state, or accesses other resources (network resources other than protected resources) through the browser in the logged-in state ), when the server receives the request message, the CAS filter will not trigger a 302 redirect. In this step, when the server receives the request message sent by the browser, the conversion plug-in determines whether the server initiates 302 redirection through the filter, and performs corresponding operations according to the determination result.

Among them, the request message is used to request to read or obtain related network resources, such as web pages, data packets, etc. The request message includes the address of the resource to be accessed and the status of the browser, etc. The status of the browser includes the user login status and The user is not logged in, that is, whether the user has logged in to the browser, and the address of the resource to be accessed is the uniform resource locator (uniform resource locator, URL) of the resource that the user requests to access. The server will generate a corresponding response message according to the received request message, and send the response message to the corresponding browser. For example, the server determines according to the request message that the status of the browser is that the user is not logged in and that the resource to be accessed is under the status of the user. When protecting resources, the server sends a response message including a 302 redirect address to the browser, and in other cases, the server directly sends a response message including the resource to be accessed to the browser.

S102, the conversion plug-in intercepts the response message sent by the server to the browser when it is determined that the server initiates a 302 redirection and the generated 302 redirection address conforms to the address format of the CAS.

In this step, when the conversion plug-in determines that the server has initiated a 302 redirect and the generated 302 redirect address conforms to the CAS address format, it means that the browser is requesting access to protected resources when the user is not logged in, and there is a connection between the server and the browser. The CAS authentication mechanism is used. At this time, the conversion plug-in intercepts the response message sent by the server to the browser. The header of the response message includes the HTTP status code and the 302 redirection address. Among them, the hypertext transfer protocol (hypertext transfer prltocol, HTTP) status code is 302.

In a possible implementation manner, the conversion plug-in monitors the operation of the server to determine whether the server initiates 302 redirection and the address format of the generated 302 redirection.

In another possible implementation manner, the conversion plug-in determines whether the server initiates 302 redirection and the address format of the generated 302 redirection by reading the response message generated by the server.

S103. The conversion plug-in processes the response message according to the type of the request message to obtain a first response message.

In this step, when it is determined that the server initiates 302 redirection and the generated 302 redirection address conforms to the CAS address format, the conversion plug-in intercepts the response message sent by the server to the browser, and according to the type of the request message, responds to the The message is processed to obtain a first response message.

It should be noted that, in this embodiment, the conversion plug-in has the function of reading the request message received by the server and the generated response message at any time, and has the function of intercepting the response message and processing the response message.

The types of the request message include asynchronous JavaScript and Extensible Markup Language (asynchronous javascript and XML, Ajax, where XML is an abbreviation for extensible markup language) requests and non-Ajax requests (other requests except Ajax requests).

Ajax is a web development technology that requests data asynchronously. Simply put, Ajax loads background data through asynchronous requests and renders it on the web page without the need to refresh the page. Common application scenarios include form verification whether the login is successful, Baidu search drop-down box prompts, and express tracking number query. Accordingly, Ajax requests fetch data rather than HTML documents. Therefore, Ajax requests are a special kind of request.

In this embodiment, the conversion plug-in may determine whether the type of the request packet is an Ajax request or a non-Ajax request according to the packet header of the request packet. According to different types of request packets, the conversion plug-in will perform different processing on the response packets and generate different first response packets:

In a possible implementation manner, when the type of the request message is an Ajax request, the conversion plug-in performs the following processing on the response message to obtain the first response message:

(1) Modify the HTTP status code in the header of the response message to 200;

(2) Add the authentication event attribute and the authentication successful jump attribute in the header of the response message, wherein the attribute value of the authentication event attribute is the 302 redirection address, and the attribute value of the authentication successful jump attribute is the server The stored redirect URL for successful login.

In another possible implementation manner, when the type of the request message is a non-Ajax request, the conversion plug-in performs the following processing on the response message to obtain the first response message:

(1) Modify the HTTP status code in the header of the response message to 200;

(2) adding an authentication success jump attribute to the header of the response message, and the attribute value of the authentication success jump attribute is the login success jump URL stored in the server;

(3) Filling the message body for the response message, the message body includes the code of the iframe-embedded login pop-up window and the code of the monitoring module, and the URL source (src) of the iframe in the iframe-embedded login pop-up window is the 302 redirect address.

It is not difficult to understand that, in this embodiment, modifying the HTTP status code in the header of the response packet to 200 refers to modifying the HTTP status code in the header of the response packet from 302 to 200, that is, Cancel the 302 redirect. 200 is the HTTP status code that indicates that the request sent from the browser was correctly processed by the server.

The code of the monitoring module is used by the browser to instantiate the monitoring module, and the monitoring module can perform corresponding operations in the browser.

An iframe is an HTML tag that acts as a document within a document, or a floating frame (frame). The iframe element creates an inline frame (ie, an inline frame) that contains another document. The URL source (src) is the URL of the nested web page.

Therefore, the finally obtained first response message contains two possible situations. One is that the message header includes the HTTP status code 200, the authentication event attribute and the authentication successful jump attribute. The first response message, the other is the message The header includes the HTTP status code 200 and the authentication success jump attribute, and the message body includes the code of the login pop-up window embedded in the iframe and the first response message of the code of the monitoring module. The conversion plug-in generates one of two kinds of first response messages according to the type of the request message, that is, the two kinds of first response messages cannot exist at the same time.

S104, the conversion plug-in sends the first response message to the browser.

In this step, after S104, the conversion plug-in sends the first response message generated in S103 to the browser, and accordingly, the browser completes the reception of the first response message.

Optionally, in S101, if it is determined that the server does not initiate 302 redirection, the method of this embodiment further includes:

The conversion plug-in intercepts the response message sent by the server to the browser, and determines whether the content type of the message body of the response message is a hypertext markup language (Hyper Text Markup Language, HTML) format; if the content of the message body of the response message If the type is HTML format, the conversion plug-in inserts the code of the monitoring module into the message body of the response message, obtains the second response message, and sends the second response message to the browser. Accordingly, the browser receives the first response message. 2. Response message; if the content type of the message body of the response message is in other formats, such as plain text format, image format, etc., the conversion plug-in will return the response message to the server, so that the server can directly send the response message to the browser.

It can be seen from the above analysis that when the server does not initiate a 302 redirection, it means that the browser accesses other resources when the user is not logged in, or the browser accesses protected resources when the user is logged in. Correspondingly, in this step, the second response message is obtained by the conversion plug-in inserting the code of the monitoring module into the message body of the response message including the resource to be accessed.

It can be understood that the code of the monitoring module inserted in this step is the same as the code of the monitoring module inserted into the response message when a 302 redirection is initiated and the type of the request message is not an Ajax request.

S105 , the browser processes the first response message, and determines the monitoring module corresponding to the web page currently in the open state in the browser.

In this embodiment, since the conversion plug-in is only installed in the server, in order to ensure that the conversion plug-in can also control the corresponding operation in the browser, the conversion plug-in inserts the code of the monitoring module into the corresponding response message, and the browser receives the first When a response message is received, the browser determines the monitoring module corresponding to the web page currently in the open state in the browser by reading and analyzing the content of the first response message.

Since there are two different situations for the first response message, correspondingly, there are two possible situations for determining the monitoring module corresponding to the webpage that is currently open in the browser:

In a possible implementation manner, the browser reads and parses the first response packet, when it is determined that the header of the first response packet does not include the authentication event attribute and the packet body of the first response packet includes monitoring When the code of the module is used, the browser instantiates the monitoring module code in the message body of the first response message, and obtains the monitoring module corresponding to the web page currently in the open state in the browser.

In another possible implementation manner, before the browser processes the first response message and determines the monitoring module corresponding to the web page currently in the open state in the browser, the browser receives the second response message sent by the server , correspondingly, when the browser reads and parses the first response message, and determines that the header of the first response message includes the authentication event attribute, the browser executes an instance of the code of the monitoring module in the second response message to obtain the monitoring module corresponding to the web page currently in the open state in the browser.

S106, the browser generates a login pop-up window with an inline frame by using the monitoring module and the first response message.

In this step, after the monitoring module is instantiated, the browser uses the monitoring module to generate a login pop-up window with an embedded iframe according to the content of the first response message. Similarly, when the content of the first response message is different, the method of generating the login pop-up window with the embedded iframe is also different.

In a possible implementation manner, the browser uses the monitoring module to process the first response message, and determines that the header of the first response message includes the authentication success jump attribute, and the message body of the first response message includes the content The code of the iframe-embedded login pop-up window, the attribute value of the authentication successful jump attribute value is the login successful jump URL, and the URL source of the iframe in the iframe-embedded login pop-up window is the 302 redirect address, the browser will respond to the embedded iframe's URL. The code of the login pop-up window is rendered, and the login pop-up window with the embedded iframe is obtained.

It can be understood that, in this implementation manner, since the message body of the first response message includes the code of the login pop-up window embedded in the iframe, the browser renders the code of the login pop-up window embedded in the iframe. You can get the login pop-up window with the embedded iframe, and the iframe src of the login pop-up window with the embedded iframe is the 302 redirect address.

In another possible implementation manner, the browser processes the first response packet by using the monitoring module, and determines that the packet header of the first response packet includes the authentication event attribute and the authentication successful jump attribute, and the attribute of the authentication event attribute The value is the redirect address of 302, and the attribute value of the authentication successful jump attribute is after the successful login jump URL, the browser constructs the login pop-up window of the embedded iframe according to the attribute value of the authentication event attribute through the monitoring module, that is, the content is obtained. The URL source of the iframe in the login pop-up window embedded with the iframe is the 302 redirect address.

It can be understood that, in this implementation manner, since the first response message does not include the code of the iframe-embedded login pop-up window, the browser needs to use the monitoring module to The content, that is, the authentication event attribute and the authentication event attribute value, constructs a login pop-up window with an embedded iframe.

S107 , the browser controls the login popup window of the inline frame to perform an operation corresponding to the property value according to the property value of the location attribute of the iframe in the login popup window of the iframe by using the monitoring module.

In this step, it can be seen from the foregoing analysis that, under normal circumstances, the browser will perform three jumps in the CAS authentication mechanism. Since in this embodiment, the user is authenticated through the login pop-up window of the iframe, and the browser’s jump is converted into The attribute value of the location attribute of the iframe changes. Therefore, in this step, after obtaining the login pop-up window embedded in the iframe, the browser controls the The login pop-up window embedded with the iframe executes the operation corresponding to the attribute value of the location attribute of the iframe, so as to complete the login authentication of the user in the login pop-up window.

In this embodiment, through the conversion plug-in installed on the server, when the server receives the request message sent by the browser, it is determined whether the server initiates 302 redirection, and when it is determined that the server initiates 302 redirection and the generated 302 redirection address conforms to When the address format of the central authentication service CAS is used, intercept the response message sent by the server to the browser, process the response message according to the type of the request message, obtain the first response message, and send the first response message to the browser. The browser installed on the terminal device, when receiving the first response message sent by the server, processes the first response message, determines the monitoring module corresponding to the currently open webpage in the browser, and uses the monitoring The module and the first response message generate a login pop-up window with an embedded iframe, and use the monitoring module to control the execution of the login pop-up window embedded in the iframe corresponding to the attribute value according to the attribute value of the location attribute of the iframe in the login pop-up window with the embedded iframe. By installing the conversion plug-in on the server, without changing the source code of the server, the "CAS single sign-on based on web page jumping" is converted into "CAS single sign-on based on the embedded iframe pop-up window of the web page". "Click Login", through one-click installation or one-click uninstallation, the installation or uninstallation of conversion plug-ins on different servers can be realized. The operation is simple, and because the conversion plug-in does not invade the source code, it saves the cost of modifying the login process.

Preferably, in S106, while obtaining the login popup window embedded in the iframe, the browser uses the monitoring module to control the login popup window embedded in the iframe to be in a hidden state, that is, not displayed and invisible to the user. At the same time, the browser can also use the monitoring module to display an authentication prompt message in the current web page. Correspondingly, FIG. 3 is a schematic flowchart of the second embodiment of the login form conversion method provided by the embodiment of the application. As shown in FIG. 3 , S107 can be specifically implemented by the following steps:

S1071. Use the monitoring module to determine whether the attribute value of the location attribute of the inline frame can become a successful login redirect URL within a preset time threshold.

The initial attribute value of the location attribute of the iframe is iframe src, that is, the 302 redirect address. However, due to the cross-domain restriction of the browser, the monitoring module cannot read the value of the location attribute of the iframe until the successful login redirect URL. The specific attribute value of the location attribute of the iframe, therefore, in this step, the current scene can be determined by using the monitoring module to determine whether the attribute value of the location attribute of the iframe can become a successful login jump URL within the preset time threshold. Scenario 1 or Scenario 2), if the attribute value of the location attribute of the iframe cannot become the successful login redirect URL within the preset time threshold, it means that the user's personal information is not stored in the unified authentication center, and the user needs to enter the personal information. For authentication, corresponding to the situation in the aforementioned scenario 1, the browser executes S1072-S1074 accordingly; if the attribute value of the location attribute of the iframe can be changed to the successful login redirect URL within the preset time threshold, it means that the unified authentication center has stored The user's personal information can be authenticated without the user's further input of personal information. Corresponding to the situation in the foregoing scenario 2, correspondingly, the browser executes S1075-S1076.

Among them, the preset time threshold can be based on the time required for the browser to jump from the identity authentication page returned by the unified authentication center to the login ticket stub authentication page of the web server when the user does not need to input personal information in actual applications, and the preset time The threshold value only needs to be larger than this time.

S1072, using the monitoring module to control the display of the login pop-up window of the inline frame.

In this step, on the premise that the login pop-up window remains hidden, when it is determined that the attribute value of the location attribute of the iframe does not become a successful login redirect URL within the preset time threshold, the monitoring module is used to control the login pop-up embedded in the iframe. window is displayed so that the user can enter personal information in the login popup.

S1073: When the attribute value of the location attribute of the iframe changes, use the monitoring module to determine whether the attribute value of the location attribute of the iframe is equal to the successful login redirection URL.

In this step, after the user inputs personal information, the attribute value of the location attribute of the iframe changes, the browser uses the monitoring module to further obtain the location attribute of the iframe, and uses the attribute value of the authentication success jump attribute in the first response message Compare with the attribute value of the iframe's location attribute to determine whether the attribute value of the iframe's location attribute is equal to the successful login redirect URL. By judging whether the attribute value of the iframe's location attribute is equal to the successful login redirect URL, we can confirm whether the user has entered Correct personal information and login stub verification passed.

S1074 , if the attribute value of the location attribute of the iframe is equal to the successful login redirection URL, use the monitoring module to set the login popup window to a hidden state and control the current webpage to display an authentication success prompt message.

In this step, if the attribute value of the location attribute of the iframe is equal to the successful login redirect URL, indicating that both the user's personal information and the login ticket stub are verified, the browser uses the monitoring module to set the login pop-up window to a hidden state and control the current webpage to display the authentication A success prompt message to prompt the user that the login was successful. If the attribute value of the location attribute of the iframe is not equal to the successful login redirect URL, indicating that the user's personal information or login ticket stub verification fails, the browser uses the monitoring module to set the login pop-up window to a hidden state and control the current web page to display a prompt related to authentication failure information.

S1075 , when the attribute value of the location attribute of the iframe changes, use the monitoring module to determine whether the attribute value of the location attribute of the iframe is equal to the successful login redirection URL.

In this step, when it is determined that the attribute value of the location attribute of the iframe can become a successful login redirect URL within the preset time threshold, and on the premise that the login pop-up window remains hidden, when the attribute value of the location attribute of the iframe changes , the monitoring module is used to judge whether the attribute value of the location attribute of the iframe is equal to the successful login redirection URL.

S1076 , if the attribute value of the location attribute of the iframe is equal to the successful login redirection URL, use the monitoring module to control the current webpage to display the authentication success prompt message.

In this step, if according to S1075, the browser uses the monitoring module to determine that the attribute value of the location attribute of the iframe is equal to the successful login redirect URL, then the monitoring module is used to control the current webpage to display the authentication success prompt message. The specific implementation is similar to that of S1074. Repeat.

In this embodiment, the monitoring module is used to determine whether the attribute value of the location attribute of the iframe can become a successful login redirect URL within the preset time threshold, if the attribute value of the location attribute of the iframe cannot be changed within the preset time threshold When the login is successful, the URL is redirected. The browser uses the monitoring module to control the display of the login pop-up window embedded in the iframe. When the attribute value of the location attribute of the iframe changes, the monitoring module is used to determine whether the attribute value of the location attribute of the iframe is equal to the successful login jump. URL, if the attribute value of the location attribute of the iframe is equal to the successful login redirect URL, use the monitoring module to set the login pop-up window to a hidden state and control the current web page to display the authentication success prompt message. Set the time threshold to become the successful login redirect URL. When the attribute value of the location attribute of the iframe changes, the browser uses the monitoring module to determine whether the attribute value of the location attribute of the iframe is equal to the successful login redirect URL. If the location attribute of the iframe changes If the attribute value is equal to the successful login redirect URL, the monitoring module is used to control the current webpage to display the authentication success prompt message, which realizes the authentication of the user in different scenarios, meets the different needs of the user, and is conducive to improving the user experience.

The technical solution of the present application will be described in detail below with two specific examples:

Example one:

(1) When the user accesses the personal center page of a web application in the unlogged state (this page is a page that can be accessed without logging in), the browser sends a request message to the server, and the conversion plug-in determines whether the server initiates 302 redirection, When the server does not initiate 302 redirection, the conversion plug-in intercepts the response message that the server will return to the browser, and when it is determined that the content type of the message body of the response message is HTML format, the conversion plug-in inserts a listener into the response message The module code obtains the second response message, and sends the second response message to the browser;

(2) When the user clicks the Query Personal Information button under the personal center page displayed by the browser in the non-login state (the user needs to log in to have access), the browser sends a request message to the server in the form of Ajax; the conversion plug-in monitors When the server receives the request message, a 302 redirect is triggered and the generated 302 redirect address conforms to the CAS address format. The conversion plug-in intercepts the response message that the server will send to the browser, and the header of the response message The hypertext transfer protocol HTTP status code in is modified to 200, and the authentication event attribute and the authentication success jump attribute are added in its message header. The attribute value of the authentication event attribute is the 302 redirection address, and the authentication success jump attribute The attribute value of is the successful login redirect URL stored in the server, the first response message is obtained, and the first response message is sent to the browser.

(3) After the browser receives the first response message, it is judged that the message header includes the authentication event attribute, and the browser instantiates the code of the monitoring module in the second response message to obtain the monitoring module;

(4) According to the attribute value of the authentication event attribute, the monitoring module constructs a login pop-up window with an embedded iframe, and the iframe src in the login pop-up window is the 302 redirection address;

(5) The monitoring module controls the iframe-embedded login pop-up window to perform operations corresponding to the attribute values according to the attribute value of the location attribute of the iframe in the iframe-embedded login pop-up window, and completes the user's login authentication through the login pop-up window.

(6) The user can view the personal information by clicking the Query Personal Information button again.

Example two:

(1) When the user accesses the personal basic information page of a Web application in a non-login state (the user needs to log in to have permission to access), the browser sends a request message to the server in a non-Ajax form; the conversion plug-in detects that the server receives the request When a 302 redirect is triggered in the message and the generated 302 redirect address conforms to the CAS address format, the conversion plug-in intercepts the response message that the server will send to the browser, and the hypertext transfer protocol in the header of the response message The HTTP status code is changed to 200, and the authentication success redirect attribute is added to the header of the response message. The attribute value of the authentication success redirect property is the login success redirect URL stored in the server, and the message body is filled in the response message. , the message body includes the code of the iframe-embedded login pop-up window and the code of the monitoring module, the URL source of the iframe in the iframe-embedded login pop-up window is the 302 redirect address, the first response message is obtained, and the first response is reported to text to the browser.

(2) After the browser receives the first response message, it judges that the header of the message does not include the authentication event attribute and the message body includes the code of the monitoring module, and the browser has the code of the monitoring module in the first response message. Instantiate to get the monitor module.

(3) The browser renders the code of the login pop-up window with the embedded iframe, and obtains the login pop-up window with the embedded iframe. The iframe src in the login pop-up window is the 302 redirect address.

(4) The monitoring module controls the iframe-embedded login pop-up window to perform operations corresponding to the attribute values according to the attribute value of the location attribute of the iframe in the iframe-embedded login pop-up window, and completes the user's login authentication through the login pop-up window.

(5) The user clicks to view the personal basic information page, and the browser jumps to the personal basic information page.

FIG. 4 is a schematic structural diagram of Embodiment 1 of the login form conversion apparatus provided by the embodiment of the present application. As shown in FIG. 1 , the login form conversion apparatus 10 includes:

Processing unit 11 and transceiver unit 12 .

Wherein, the processing unit 11 is used to determine whether the server initiates 302 redirection when the server receives the request message sent by the browser; when it is determined that the server initiates 302 redirection and the generated 302 redirection address conforms to the address of the central authentication service CAS Format, intercept the response message sent by the server to the browser; process the response message according to the type of the request message to obtain the first response message;

The transceiver unit 12 is configured to send the first response message to the browser.

Optionally, the processing unit 11 is specifically configured to:

If the type of the request message is an asynchronous JavaScript and extensible markup language Ajax request, change the HTTP status code of the Hypertext Transfer Protocol in the header of the response message to 200; add an authentication event to the header of the response message attribute and authentication success jump attribute, the attribute value of the authentication event attribute is the 302 redirection address, and the attribute value of the authentication success jump attribute is the login successful jump uniform resource locator URL stored in the server.

Optionally, the processing unit 11 is specifically configured to:

If the type of the request message is a non-asynchronous JavaScript and Extensible Markup Language Ajax request, change the HTTP status code of the Hypertext Transfer Protocol in the header of the response message to 200; add authentication to the header of the response message Successful jump attribute, the attribute value of the authentication successful jump attribute is the URL of the login successful jump uniform resource locator stored in the server; the message body is filled for the response message, and the message body includes the code and monitoring of the login pop-up window embedded in the iframe. The code of the module, the URL source of the iframe in the login pop-up window with the embedded iframe is the 302 redirect address.

Optionally, the processing unit 11 is also used for:

If it is determined that the server does not initiate 302 redirection, intercept the response message sent by the server to the browser; determine whether the content type of the message body of the response message is HTML format; if the content type of the message body of the response message If it is in HTML format, insert the code of the monitoring module into the message body of the response message to obtain the second response message.

The receiving unit 12 is also used to:

Send the second response message to the browser.

The login form conversion apparatus 10 provided in this embodiment is configured to execute the technical solution on the server side in any of the foregoing method embodiments, and the implementation principles and technical effects are similar, and details are not described herein again.

FIG. 5 is a schematic structural diagram of Embodiment 2 of the login form conversion apparatus provided by the embodiment of the application. As shown in FIG. 5 , the login form conversion apparatus 20 in this embodiment includes:

Transceiver unit 21 and processing unit 22 .

The transceiver unit 21 is configured to receive the first response message sent by the server.

The processing unit 22 is used to process the first response message, determine the monitoring module corresponding to the webpage currently in the open state in the browser, use the monitoring module and the first response message to generate a login pop-up window with an embedded iframe, and use the monitoring module and the first response message to generate a login pop-up window with an embedded iframe. The module controls the iframe-embedded login pop-up window to perform operations corresponding to the attribute values according to the attribute value of the location attribute of the iframe in the iframe-embedded login pop-up window.

Optionally, the processing unit 22 is specifically configured to:

The monitoring module is used to process the first response message, and it is determined that the header of the first response message includes the authentication success jump attribute, and the message body of the first response message includes the code of the login pop-up window embedded in the iframe, and the authentication is successful. The attribute value of the jump attribute is the URL of the URL of the login successfully jumped to, and the URL source of the iframe in the login pop-up window embedded with the iframe is the 302 redirect address; Login popup with embedded iframe.

Optionally, the processing unit 22 is specifically configured to:

Use the monitoring module to process the first response packet, and determine that the packet header of the first response packet includes the authentication event attribute and the authentication successful jump attribute, the attribute value of the authentication event attribute is 302 redirection address, and the authentication successful jump attribute The value of the attribute value is the URL of the Uniform Resource Locator that is successfully logged in; the monitoring module constructs the login pop-up window with the embedded iframe according to the attribute value of the authentication event attribute.

Optionally, the transceiver unit 21 is also used for:

The second response message sent by the server is received, and the message body of the second response message includes the code of the monitoring module.

Correspondingly, the processing unit 22 is specifically used for:

Process the first response message, determine that the header of the first response message includes the authentication event attribute, instantiate the code of the monitoring module in the message body of the second response message, and obtain the browser that is currently open The monitoring module corresponding to the web page of the status.

Optionally, the processing unit 22 is specifically configured to:

Process the first response message, determine that the header of the first response message does not include the authentication event attribute and the message body of the first response message includes the code of the monitoring module, and the message body of the first response message The code of the monitoring module in the browser is instantiated to obtain the monitoring module corresponding to the currently open web page in the browser.

Optionally, the processing unit 22 is also used for:

Use the monitoring module to control the login pop-up window embedded in the iframe to be hidden.

Correspondingly, the processing unit 22 is specifically used for:

Use the monitoring module to determine whether the attribute value of the location attribute of the iframe can become a successful login jump URL within the preset time threshold;

If the attribute value of the location attribute of the iframe cannot be changed to the successful login redirect URL within the preset time threshold, the monitoring module is used to control the display of the login pop-up window;

When the attribute value of the location attribute of the iframe changes, the monitoring module is used to judge whether the attribute value of the location attribute of the iframe is equal to the successful login redirect URL;

If the attribute value of the location attribute of the iframe is equal to the successful login redirect URL, the monitoring module is used to set the login popup window to a hidden state and control the current web page to display a successful authentication prompt message.

Optionally, the processing unit 22 is also used for:

If the attribute value of the location attribute of the iframe can become a successful login redirect URL within the preset time threshold, when the attribute value of the location attribute of the iframe changes, the monitoring module is used to judge whether the attribute value of the location attribute of the iframe is equal to the login Successfully redirected URL;

If the attribute value of the location attribute of the iframe is successfully logged in and redirects to the URL, the monitoring module is used to control the current webpage to display a prompt message of successful authentication.

The login form conversion apparatus 20 provided in this embodiment is configured to execute the technical solutions on the terminal device side in any of the foregoing method embodiments, and the implementation principles and technical effects are similar, and details are not described herein again.

FIG. 6 is a schematic structural diagram of an embodiment of a server provided by this application. As shown in FIG. 6 , the server 30 in this embodiment includes: a transceiver 30, a memory 32, and a processor 33. The memory 32 is used to store computer programs, and the processor 33. Execute the computer program to implement the login form conversion method in any of the foregoing server-side method embodiments.

FIG. 7 is a schematic structural diagram of an embodiment of a terminal device provided by the application. As shown in FIG. 7 , the terminal device 40 in this embodiment includes: a transceiver 41, a memory 42, and a processor 43, and the memory 42 is used for storing computer programs, The processor 43 executes the computer program to implement the login form conversion method in any of the foregoing method embodiments on the terminal device side.

An embodiment of the present application further provides a storage medium, where the storage medium is used to store a computer program, and the stored computer program is used to implement the server-side login form conversion method provided by any of the above method embodiments.

An embodiment of the present application further provides a storage medium, where the storage medium is used to store a computer program, and the stored computer program is used to implement the method for converting a side login form of a terminal device provided by any of the above method embodiments.

In the specific implementation of the above-mentioned terminal device or server, it should be understood that the processor may be a central processing unit (CPU), or other general-purpose processors, digital signal processors (DSP), special-purpose processors, etc. Integrated circuit (application specific integrated circuit, referred to as: ASIC) and so on. A general purpose processor may be a microprocessor or the processor may be any conventional processor or the like. The steps in combination with the method disclosed in the present application can be directly embodied as executed by a hardware processor, or executed by a combination of hardware and software modules in the processor.

Those skilled in the art can understand that all or part of the steps of any of the above method embodiments may be completed by hardware related to program instructions. The foregoing program may be stored in a computer-readable storage medium, and when the program is executed, all or part of the steps described in the foregoing method embodiments are executed.

In the specific implementation of the above-mentioned storage medium, it can be implemented by any type of volatile or non-volatile storage device or their combination, such as static random-access memory (SRAM), electrically erasable and removable storage medium. Programmable read-only memory (electrically-erasable programmable read-only memory, EEPROM), erasable programmable read-only memory (EPROM), programmable read-only memory (programmable read-only memory, PROM) , read-only memory (read-only memory, ROM), magnetic memory, flash memory, magnetic disk or optical disk, etc. A readable storage medium can be any available medium that can be accessed by a general purpose or special purpose computer or similar base station.

Finally, it should be noted that the above embodiments are only used to illustrate the technical solutions of the present application, but not to limit them; although the present invention has been described in detail with reference to the foregoing embodiments, those of ordinary skill in the art should understand that: The technical solutions described in the foregoing embodiments can still be modified, or some or all of the technical features thereof can be equivalently replaced; and these modifications or replacements do not make the essence of the corresponding technical solutions deviate from the technical solutions of the embodiments of the present invention. scope.

Claims (17)

1. A login form conversion method is characterized in that the method is applied to a conversion plug-in installed on a server; the method comprises the following steps:

when a server receives a request message sent by a browser, judging whether the server initiates 302 redirection;

intercepting a response message sent to the browser by the server when the server initiates 302 redirection and the generated 302 redirection address conforms to the address format of a CAS (central authentication service);

processing the response message according to the type of the request message to obtain a first response message;

and sending the first response message to a browser.

2. The method according to claim 1, wherein the processing the response packet according to the type of the request packet to obtain a first response packet comprises:

if the type of the request message is asynchronous JavaScript and an extensible markup language (Ajax) request, modifying a hypertext transfer protocol (HTTP) state code in a message header of the response message into 200;

and adding an authentication event attribute and an authentication success skip attribute in a message header of the response message, wherein the attribute value of the authentication event attribute is the 302 redirection address, and the attribute value of the authentication success skip attribute is a login success skip Uniform Resource Locator (URL) stored in the server.

3. The method according to claim 1, wherein the processing the response packet according to the type of the request packet to obtain a first response packet comprises:

if the type of the request message is non-asynchronous JavaScript and an extensible markup language (Ajax) request, modifying a hypertext transfer protocol (HTTP) state code in a message header of the response message into 200;

adding an authentication success skip attribute in a message header of the response message, wherein the attribute value of the authentication success skip attribute is a login success skip Uniform Resource Locator (URL) stored in the server;

and filling a message body for the response message, wherein the message body comprises a code of a login popup window embedded with an inline frame iframe and a code of a monitoring module, and the website source of the iframe in the login popup window embedded with the iframe is the 302 redirection address.

4. The method of claim 1, further comprising:

if the server does not initiate 302 redirection, intercepting a response message sent by the server to the browser;

judging whether the content type of the message body of the response message is in a hypertext markup language (HTML) format or not;

if the content type of the message body of the response message is in an HTML format, inserting a code of a monitoring module into the message body of the response message to obtain a second response message;

and sending the second response message to the browser.

5. A login form conversion method is applied to a browser of a terminal device, and comprises the following steps:

receiving a first response message sent by a server;

processing the first response message, and determining a monitoring module corresponding to a webpage currently in an open state in the browser;

generating a login popup window embedded with an inline frame iframe by using the monitoring module and the first response message;

and controlling the login popup window with the embedded iframe to execute the operation corresponding to the attribute value by using the monitoring module according to the attribute value of the position attribute of the iframe in the login popup window with the embedded iframe.

6. The method of claim 5, wherein the generating a login popup window with an embedded iframe by using the listening module and the first response packet comprises:

processing the first response message by using the monitoring module, and determining that a message header of the first response message comprises an authentication success skip attribute, a message body of the first response message comprises a code of a login popup window embedded with an iframe, wherein an attribute value of the authentication success skip attribute is a login success skip Uniform Resource Locator (URL), and a website source of the iframe in the login popup window embedded with the iframe is a 302 redirection address;

and rendering the code of the login popup window embedded with the iframe to obtain the login popup window embedded with the iframe.

7. The method of claim 5, wherein the generating a login popup window with an embedded iframe by using the listening module and the first response packet comprises:

processing the first response message by using the monitoring module, and determining that a message header of the first response message comprises an authentication event attribute and an authentication success skip attribute, wherein the attribute value of the authentication event attribute is a 302 redirection address, and the attribute value of the authentication success skip attribute is a login success skip Uniform Resource Locator (URL);

and constructing a login popup window of the embedded iframe according to the attribute value of the authentication event attribute through the monitoring module.

8. The method according to claim 7, wherein before the processing the first response packet and determining the monitoring module corresponding to the currently open webpage in the browser, the method further comprises:

receiving a second response message sent by the server, wherein the message body of the second response message comprises a code of the monitoring module;

correspondingly, the processing the first response packet and determining the monitoring module corresponding to the currently open webpage in the browser includes:

processing the first response message, and determining that a message header of the first response message comprises an authentication event attribute;

and instantiating the code of the monitoring module in the message body of the second response message to obtain the monitoring module corresponding to the webpage currently in the open state in the browser.

9. The method according to claim 6, wherein the processing the first response packet and determining the monitoring module corresponding to the currently open webpage in the browser comprises:

processing the first response message, and determining that the message header of the first response message does not include the authentication event attribute and the message body of the first response message includes the code of the monitoring module;

and instantiating codes of the monitoring module in the message body of the first response message to obtain the monitoring module corresponding to the webpage currently in the open state in the browser.

10. The method according to any one of claims 6 to 9, wherein before the monitoring module is used to control the login popup window of the iframe to execute the operation corresponding to the attribute value according to the attribute value of the location attribute of the iframe in the login popup window of the iframe, the method further includes:

controlling the login popup window with the embedded iframe to be in a hidden state by using a monitoring module;

correspondingly, the controlling, by using the monitoring module, the login popup window of the embedded iframe to execute the operation corresponding to the attribute value according to the attribute value of the location attribute of the iframe in the login popup window of the embedded iframe includes:

judging whether the attribute value of the location attribute of the iframe can become a login success jump URL within a preset time threshold value by using the monitoring module;

if the attribute value of the location attribute of the iframe cannot become a login success jump URL within a preset time threshold, controlling the login popup window to display by using the monitoring module;

when the attribute value of the location attribute of the iframe changes, judging whether the attribute value of the location attribute of the iframe is equal to the login success jump URL or not by using the monitoring module;

and if the attribute value of the location attribute of the iframe is equal to the login success jump URL, setting the login popup window to be in a hidden state by using the monitoring module and controlling the current webpage to display an authentication success prompt message.

11. The method of claim 10, further comprising:

if the attribute value of the location attribute of the iframe can become a login success jump URL within a preset time threshold, judging whether the attribute value of the location attribute of the iframe is equal to the login success jump URL or not by using the monitoring module when the attribute value of the location attribute of the iframe changes;

and if the login success skip URL is the attribute value of the location attribute of the iframe, controlling the current webpage to display a prompt message of authentication success by using the monitoring module.

12. A login form conversion apparatus, comprising:

the processing unit is used for judging whether the server initiates 302 redirection when the server receives a request message sent by a browser; intercepting a response message sent to the browser by the server when the server initiates 302 redirection and the generated 302 redirection address conforms to the address format of a CAS (central authentication service); processing the response message according to the type of the request message to obtain a first response message;

and the receiving and sending unit is used for sending the first response message to the browser.

13. A login form conversion apparatus, comprising:

the receiving and sending unit is used for receiving a first response message sent by the server;

the processing unit is used for processing the first response message and determining a monitoring module corresponding to a webpage currently in an open state in a browser; generating a login popup window embedded with an inline frame iframe by using the monitoring module and the first response message; and controlling the login popup window with the embedded iframe to execute the operation corresponding to the attribute value by using the monitoring module according to the attribute value of the position attribute of the iframe in the login popup window with the embedded iframe.

14. A server, comprising: a transceiver, a memory, and a processor; the memory is used for storing a computer program, and the processor executes the computer program to realize the login form conversion method of any one of claims 1 to 4.

15. A terminal device, comprising: a transceiver, a memory, and a processor; the memory is used for storing a computer program, and the processor executes the computer program to realize the login form conversion method according to any one of claims 5 to 11.

16. A storage medium characterized in that the storage medium is used for storing a computer program for implementing the login form conversion method according to any one of claims 1 to 4.

17. A storage medium characterized in that the storage medium is used for storing a computer program for implementing the login form conversion method according to any one of claims 5 to 11.

Images