CN116170759B - A local area network access method and system based on WeChat - Google Patents
A local area network access method and system based on WeChat Download PDFInfo
- Publication number
- CN116170759B CN116170759B CN202310134785.0A CN202310134785A CN116170759B CN 116170759 B CN116170759 B CN 116170759B CN 202310134785 A CN202310134785 A CN 202310134785A CN 116170759 B CN116170759 B CN 116170759B
- Authority
- CN
- China
- Prior art keywords
- access
- token
- data
- server
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 40
- 238000012795 verification Methods 0.000 claims abstract description 38
- 239000000284 extract Substances 0.000 claims description 2
- 230000005540 biological transmission Effects 0.000 abstract description 17
- 238000010586 diagram Methods 0.000 description 6
- 230000003993 interaction Effects 0.000 description 5
- 238000004891 communication Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 230000002452 interceptive effect Effects 0.000 description 1
- 230000009545 invasion Effects 0.000 description 1
- 238000011160 research Methods 0.000 description 1
- 238000012827 research and development Methods 0.000 description 1
- 238000012216 screening Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W4/00—Services specially adapted for wireless communication networks; Facilities therefor
- H04W4/12—Messaging; Mailboxes; Announcements
- H04W4/14—Short messaging services, e.g. short message services [SMS] or unstructured supplementary service data [USSD]
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/03—Protecting confidentiality, e.g. by encryption
- H04W12/033—Protecting confidentiality, e.g. by encryption of the user plane, e.g. user's traffic
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W12/00—Security arrangements; Authentication; Protecting privacy or anonymity
- H04W12/08—Access security
- H04W12/084—Access security using delegated authorisation, e.g. open authorisation [OAuth] protocol
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04W—WIRELESS COMMUNICATION NETWORKS
- H04W84/00—Network topologies
- H04W84/02—Hierarchically pre-organised networks, e.g. paging networks, cellular networks, WLAN [Wireless Local Area Network] or WLL [Wireless Local Loop]
- H04W84/10—Small scale networks; Flat hierarchical networks
- H04W84/12—WLAN [Wireless Local Area Networks]
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Data Exchanges In Wide-Area Networks (AREA)
Abstract
本发明提供了一种基于微信的局域网访问方法及系统,该方法应用于微信客户端,通过向局域网的服务器发送接入请求;接收服务器发送的令牌和微信消息加密密钥;向服务器发送带有令牌的模拟访问请求;在接收到服务器发送的接入成功标识后,基于令牌和微信消息加密密钥建立与服务器的数据访问。从而通过在客户端与服务器之间进行身份校验的方式,为校验通过的客户端分配令牌和微信消息加密密钥,实现客户端和服务端的互信关系识别,从而无需部署VPN即可实现用户终端对局域网的访问,避免了VPN网关出现问题而影响用户的正常访问,并且通过令牌和微信消息加密密钥的传输方式,保障了数据访问过程中的传输安全,提升了用户的访问体验。
The present invention provides a local area network access method and system based on WeChat, which is applied to WeChat client, by sending an access request to a server of the local area network; receiving a token and a WeChat message encryption key sent by the server; sending a simulated access request with a token to the server; after receiving an access success identifier sent by the server, establishing data access with the server based on the token and the WeChat message encryption key. Thus, by performing identity verification between the client and the server, a token and a WeChat message encryption key are allocated to the client that passes the verification, and the mutual trust relationship between the client and the server is recognized, so that the user terminal can access the local area network without deploying a VPN, avoiding problems with the VPN gateway that affect the normal access of the user, and by the transmission method of the token and the WeChat message encryption key, the transmission security in the data access process is guaranteed, and the user's access experience is improved.
Description
Technical Field
The invention relates to the technical field of data transmission, in particular to a local area network access method and system based on WeChat.
Background
In the prior art, a private network, i.e., a local area network, is intended to be remotely and securely accessed by a user terminal, and is typically implemented by a VPN gateway configured with a private network in a VPN server. However, the technology is complicated to deploy, and when a VPN gateway has a problem, the access from the user terminal to the private network is interrupted, so that the access experience of the user is affected.
Disclosure of Invention
In view of the above, the embodiments of the present invention provide a method and a system for accessing a local area network based on WeChat, so as to overcome the problem in the prior art that access will be interrupted when a VPN gateway is in a problem, which affects user access experience, by using a VPN gateway to access the local area network.
The embodiment of the invention provides a local area network access method based on WeChat, which is applied to WeChat clients, and comprises the following steps:
Sending an access request to a server of a local area network;
Receiving a token and a WeChat message encryption key sent by the server, wherein the token and the WeChat message encryption key are distributed to the WeChat client after the server performs identity verification on the WeChat client by using the access request;
Sending a simulated access request with the token to the server;
after receiving an access success identification sent by the server, establishing data access with the server based on the token and the WeChat message encryption key, and sending the access success identification after verifying that the token carried in the simulated access request is consistent with the token distributed for the WeChat client for the server.
Optionally, the sending an access request to a server of the local area network includes:
acquiring identity information of a WeChat client;
and sending an access request with the identity information to the server.
Optionally, the establishing data access with the server based on the token and the WeChat message encryption key includes:
Acquiring the data access requirement of a user;
generating a data access request based on the data access requirement and the token;
Encrypting the data access request by utilizing the WeChat message encryption key, and sending the encrypted data access request to the server;
and receiving the access data fed back by the server.
Optionally, the method further comprises:
And decrypting the access data by using the WeChat message encryption key to obtain decrypted access data.
The embodiment of the invention also provides a local area network access method based on WeChat, which is applied to a server of a local area network and comprises the following steps:
receiving an access request sent by a WeChat client;
the access request is utilized to carry out identity verification on the WeChat client, and after the identity verification is passed, a token and a WeChat message encryption key are distributed to the WeChat client;
sending the token and the WeChat message encryption key to the WeChat client;
receiving a simulated access request with a token sent by the WeChat client;
verifying whether a token carried in the simulated access request is consistent with a token distributed for the WeChat client;
And when the verification is consistent, sending an access success identifier to the WeChat client so as to establish data access with the WeChat client.
Optionally, the performing identity verification on the WeChat client by using the access request includes:
extracting the identity information of the WeChat client from the access request;
judging whether the identity information is consistent with the entered identity information of the WeChat client;
And when the identity information is consistent with the identity information of the input WeChat client, determining that the identity verification passes.
Optionally, the establishing data access with the WeChat client includes:
receiving a data access request sent by the WeChat client;
decrypting the data access request by using the WeChat message encryption key to obtain the data access requirement and the token of the WeChat client;
Judging whether the decrypted token is consistent with the token distributed to the WeChat client;
when the data access requirements are consistent, extracting access data based on the data access requirements;
And sending the access data to the WeChat client.
Optionally, the extracting access data based on the data access requirement includes:
extracting an operation command in the data access requirement;
Calling a corresponding functional module to execute corresponding operation based on the operation command to obtain an execution result fed back by the functional module;
and obtaining access data based on the execution result.
Optionally, the sending the access data to the WeChat client includes:
encrypting the access data and the token by using the WeChat message encryption key to obtain encrypted access data;
and sending the encrypted access data to the WeChat client.
The embodiment of the invention also provides a local area network access system based on the WeChat, which comprises a WeChat client and a server of the local area network, wherein,
The WeChat client sends an access request to a server of a local area network;
the server receives an access request sent by a WeChat client, performs identity verification on the WeChat client by utilizing the access request, and distributes a token and a WeChat message encryption key for the WeChat client after the identity verification is passed;
The WeChat client receives the token and the WeChat message encryption key sent by the server; sending a simulated access request with the token to the server;
The server receives a simulated access request with a token sent by the WeChat client, verifies whether the token carried in the simulated access request is consistent with the token distributed for the WeChat client or not, and sends an access success identifier to the WeChat client when the token is verified to be consistent with the token distributed for the WeChat client;
and after receiving the access success identification sent by the server, the WeChat client establishes data access with the server based on the token and the WeChat message encryption key.
The technical scheme of the invention has the following advantages:
1. The embodiment of the invention provides a local area network access method based on WeChat, which is applied to WeChat clients, wherein a token and a WeChat message encryption key are distributed to the clients passing verification in a mode of identity verification between the clients and a server, whether the clients are successfully accessed to the server is verified in a mode of simulating an access request, mutual trust relationship identification of the clients and the server is realized, and data access of the clients and the server can be established after the clients are successfully accessed, so that access of a user terminal to the local area network can be realized without VPN deployment, normal access of users is prevented from being influenced due to the occurrence of problems of VPN gateways, and transmission safety in the data access process is ensured and access experience of the users is improved through a transmission mode of the token and the WeChat message encryption key.
2. The embodiment of the invention provides a local area network access method based on WeChat, which is applied to a server of the local area network, wherein a token and a WeChat message encryption key are distributed to a client passing verification in a mode of identity verification between the client and the server, whether the client is successfully accessed to the server is verified in a mode of simulating an access request, mutual trust relationship identification of the client and the server is realized, and data access of the client and the server can be established after the client is successfully accessed, so that access of a user terminal to the local area network can be realized without VPN deployment, normal access of a user is prevented from being influenced due to the occurrence of problems of a VPN gateway, and transmission safety in the data access process is ensured and access experience of the user is improved through a transmission mode of the token and the WeChat message encryption key.
3. The embodiment of the invention also provides a local area network access system based on WeChat, which consists of a WeChat client and a server of the local area network, wherein the system distributes a token and a WeChat message encryption key for the client passing verification by a mode of carrying out identity verification between the client and the server, verifies whether the client is successfully accessed to the server by simulating an access request, realizes mutual trust relationship identification of the client and the server, and establishes data access of the client and the server after successful access, thereby realizing access of a user terminal to the local area network without deploying VPN, avoiding problems of a VPN gateway to influence normal access of a user, ensuring transmission safety in the data access process by a transmission mode of the token and the WeChat message encryption key, and improving access experience of the user.
Drawings
In order to more clearly illustrate the embodiments of the present invention or the technical solutions in the prior art, the drawings that are needed in the description of the embodiments or the prior art will be briefly described, and it is obvious that the drawings in the description below are some embodiments of the present invention, and other drawings can be obtained according to the drawings without inventive effort for a person skilled in the art.
Fig. 1 is a schematic structural diagram of a lan access system based on WeChat in an embodiment of the present invention;
FIG. 2 is a schematic diagram of interaction of a WeChat-based local area network access in an embodiment of the invention;
FIG. 3 is a schematic diagram illustrating a specific process of access to a WeChat-based local area network in an embodiment of the present invention;
fig. 4 is a schematic diagram of a specific process of performing consistency check between a WeChat client and a server in an embodiment of the present invention.
Detailed Description
For the purpose of making the objects, technical solutions and advantages of the embodiments of the present invention more apparent, the technical solutions of the embodiments of the present invention will be clearly and completely described below with reference to the accompanying drawings in the embodiments of the present invention, and it is apparent that the described embodiments are some embodiments of the present invention, but not all embodiments of the present invention. All other embodiments, which can be made by those skilled in the art based on the embodiments of the invention without making any inventive effort, are intended to fall within the scope of the invention.
The technical features of the different embodiments of the invention described below may be combined with one another as long as they do not conflict with one another.
In the prior art, a manner of remote access to a private network, i.e., a local area network, by a user terminal is generally implemented by a VPN gateway configured with a private network in a VPN server. However, the technology is complicated to deploy, and when a VPN gateway has a problem, the access from the user terminal to the private network is interrupted, so that the access experience of the user is affected.
Based on the above problems, the embodiment of the invention provides a local area network access system based on a micro-letter, as shown in fig. 1, which comprises a micro-letter client 101 and a server 102 of the local area network, wherein the micro-letter client 101 sends an access request to the server 102 of the local area network, the server 102 receives the access request sent by the micro-letter client 101, performs identity verification on the micro-letter client 101 by using the access request, distributes a token and a micro-letter message encryption key to the micro-letter client 101 after the identity verification is passed, sends the token and the micro-letter message encryption key to the micro-letter client 101, the micro-letter client 101 receives the token and the micro-letter message encryption key sent by the server 102, sends a simulated access request with the token to the server 102, the server 102 receives the simulated access request with the token sent by the micro-letter client 101, verifies whether the token carried by the simulated access request is consistent with the token distributed for the micro-letter client 101, sends an access success identification to the micro-letter client 101 when the token is verified to be consistent, and establishes an access success identification with the micro-letter client 101 based on the token and the encrypted data of the micro-letter client 102 after the access identification sent by the server 102 is received.
Specifically, if the local area network is a proprietary network of an enterprise, the WeChat client 101 corresponds to the enterprise WeChat client 101, and if the local area network is other types of internal networks, the WeChat client 101 may also be a personal WeChat client 101, specifically, the settings may be performed according to the application scenario of the actual local area network, which is not limited in the present invention. It should be noted that, the server 102 of the lan is the server 102 responsible for the communication service of the whole lan, and the server 102 of one lan may correspond to a plurality of micro-letter clients 101, or may correspond to an enterprise micro-letter client 101 or a personal micro-letter client 101, in this embodiment of the present invention, the description is given by taking a data access between one of the micro-letter clients 101 and the server 102 of the lan as an example, and a specific interaction process between the micro-letter client 101 and the server 102 of the lan is referred to as an interaction schematic diagram shown in fig. 2 and a specific process schematic diagram of access to the lan based on micro-letter as shown in fig. 3. In practical applications, the server 102 of the lan may establish data access with multiple WeChat clients 101 at the same time, and the specific implementation process is similar to the access process of one WeChat client 101, which is not described herein.
Detailed working procedures of the WeChat client 101 and the server 102 are described in the following steps of the method embodiment, and will not be described here.
Through the cooperation of the components, the local area network access system based on WeChat provided by the embodiment of the invention distributes a token and a WeChat message encryption key for the client passing verification by means of identity verification between the client and the server, verifies whether the client is successfully accessed to the server by means of simulating an access request, realizes mutual trust relationship identification of the client and the server, and establishes data access of the client and the server after successful access, thereby realizing access of a user terminal to the local area network without VPN deployment, avoiding problems of a VPN gateway to influence normal access of a user, ensuring transmission safety in the data access process by means of transmission of the token and the WeChat message encryption key, and improving access experience of the user.
The embodiment of the invention also provides a local area network access method based on WeChat, which is applied to the WeChat client 101 shown in fig. 1 and the server 102 of the local area network, wherein as shown in fig. 2, the WeChat client 101 is used for executing steps S101 to S104, and the server 102 is used for executing steps S201 to S206.
Step S101, sending an access request to a server of the local area network.
Specifically, the method comprises the steps of acquiring identity information of a WeChat client, and sending an access request with the identity information to a server. Taking the WeChat client as an enterprise WeChat as an example, the identity information can comprise an enterprise ID, an application ID and the like of the enterprise WeChat.
Step S201, receiving an access request sent by a WeChat client.
And step S202, carrying out identity verification on the WeChat client by using the access request, and distributing a token and a WeChat message encryption key for the WeChat client after the identity verification is passed.
Specifically, in order to ensure the security of the access of the WeChat client, the known and legal WeChat client is ensured to be called a client access server for short. The information of the client, such as enterprise ID, application ID and the like of enterprise WeChat, needs to be firstly input on the server, and after the information of the client is input on the server, the client can actively initiate an access request to the server.
Further, the step S202 is implemented by extracting the identity information of the WeChat client from the access request, determining whether the identity information is consistent with the entered identity information of the WeChat client, and determining that the identity verification is passed when the identity information is consistent with the entered identity information of the WeChat client. The server, after receiving the access request of the client, needs to check the information of the client first, compares whether the information such as the enterprise ID and the application ID is consistent with the entered information, if so, can execute the subsequent steps, and if not, refuses the access request of the client, so as to avoid the invasion of the illegal client and ensure the safety of the local area network. After the verification of the information is completed, in order to enable the subsequent access of the client and the server to be more convenient, a Token and a WeChat message encryption key EncodingAESKey are distributed to the server, so that authentication is not required for each request, the access speed and the access efficiency are greatly improved, and the use experience of a user is further improved.
And step 203, the token and the WeChat message encryption key are sent to the WeChat client.
And step S102, receiving the token and the WeChat message encryption key sent by the server.
Step S103, sending a simulated access request with a token to a server.
Specifically, after receiving the Token sent by the server, the client simulates a user access request once by carrying the Token in order to ensure the validity and availability of the Token, so as to remove access faults and ensure the successful proceeding of subsequent access.
And step S204, receiving a simulated access request with a token sent by the WeChat client.
Step S205, verifying whether the token carried in the simulated access request is consistent with the token distributed for the WeChat client.
And step S206, when the verification is consistent, sending an access success identification to the WeChat client.
Step S104, after receiving the access success identification sent by the server, establishing data access with the server based on the token and the WeChat message encryption key.
Specifically, after the server returns the identifier of successful access, the Token is represented as being normally usable. At this time, the user can be allowed to access the client, the subsequent data interaction between the client and the server only needs to carry token access, and consistency verification is not needed, so that the access flow is further simplified, and the use experience of the user is improved.
By executing the steps, the local area network access method based on WeChat provided by the embodiment of the invention distributes the token and the WeChat message encryption key for the client passing the verification by the identity verification mode between the client and the server, verifies whether the client is successfully accessed to the server by simulating the access request mode, realizes the mutual trust relationship identification of the client and the server, and establishes the data access of the client and the server after the client is successfully accessed, thereby realizing the access of the user terminal to the local area network without deploying VPN, avoiding the problem of a VPN gateway to influence the normal access of the user, ensuring the transmission safety in the data access process by the transmission mode of the token and the WeChat message encryption key, and improving the access experience of the user.
Specifically, in an embodiment, the step S104 performed by the WeChat client 101 includes performing the following steps S41 to S45, and the step S206 performed by the server 102 includes performing the following steps S61 to S65. A specific process of the WeChat client 101 and the server 102 for performing the consistency check is shown in fig. 4.
And S41, acquiring the data access requirement of the user.
Specifically, the data access requirement of the user may be that the user sends a specified command to the back end of the local area network, and the specified command format may be, for example, a form of a keyword+a parameter, where the keyword is used to perform identification of a function, and the parameter is data used in a corresponding function.
And step S42, generating a data access request based on the data access requirement and the token.
Specifically, the data access request may be created in a pre-set format, such as in the format of sender, recipient, token, and command.
And step S43, encrypting the data access request by using the WeChat message encryption key, and sending the encrypted data access request to the server.
Step S61, receiving a data access request sent by the WeChat client.
And step S62, decrypting the data access request by utilizing the WeChat message encryption key to obtain the data access requirement and the token of the WeChat client.
Step S63, judging whether the decrypted token is consistent with the token distributed to the WeChat client;
and S64, extracting access data based on the data access requirement when the access data are consistent.
The method comprises the steps of extracting an operation command in a data access requirement, calling a corresponding functional module to execute corresponding operation based on the operation command to obtain an execution result fed back by the functional module, and obtaining access data based on the execution result.
In practical application, after receiving the encrypted data sent from the enterprise WeChat client, the server decrypts the data by using the configured EncodingAESKey to obtain a plaintext, wherein the plaintext comprises a sender, a receiver, a Token and a command, then matches the Token in the plaintext, executes the next step if the Token is consistent, returns an error report if the Token is inconsistent, and refuses to provide access data for the client.
Further, the server extracts the command in the parsed text, judges the keyword preferentially according to a preset format, confirms the specific operation which the client wants to execute, then transmits the corresponding parameters to the corresponding functional modules, and finally obtains the result returned by the functional modules, namely the access data.
And step S65, the access data is sent to the WeChat client.
The method comprises the steps of encrypting access data and a token by utilizing a WeChat message encryption key to obtain encrypted access data, and sending the encrypted access data to a WeChat client.
In practical applications, in order to smoothly return the returned result to the client, the server uses EncodingAESKey fields, i.e., sender, receiver, token, and returned result, to perform AES encryption. And then returns to the client
And S44, receiving access data fed back by the server.
And step S45, decrypting the access data by utilizing the WeChat message encryption key to obtain decrypted access data.
Specifically, after receiving the data, the client uses EncodingAESKey to perform AES decryption to obtain a return result. Finally, the method is displayed on the client of the enterprise WeChat. In addition, in practical application, in order to avoid sending wrong access data due to server problem, the WeChat client side can also utilize the distributed Token to compare Token in the access data sent by the server, if the Token is consistent, the access data is indicated to be the data corresponding to the data access request sent by the user through the client, the accuracy of the data access result is further ensured, and the use experience of the user is improved.
The local area network access method based on the WeChat provided by the embodiment of the invention aims to ensure the safety in the transmission process by using Token and EncodingAESKey to prevent the problem of data leakage caused by hijacking, ensures that a server can identify after receiving a command by setting the format (key word and parameter) of an interactive command, and further ensures the safety in the data transmission process by encrypting the access result returned by the server in the same way in order to ensure the safety of the client capable of identifying data and data transmission.
In the prior art, to realize communication between public network and private network service, self-research app or client is needed, the research and development cost is extremely high, weChat is used as a third party client, and the communication safety between WeChat and local service is difficult to guarantee. The technical scheme provided by the embodiment of the invention realizes command interaction between the client and the private server by relying on the existing and common tools, encrypts and decrypts the data by using the AES key of EncodingAESKey, and combines token to identify the mutual trust relationship between the client and the server so as to ensure the safety of data transmission. Based on the WeChat client, the command is preconfigured (keywords and parameters) to realize the local area network access function of the background service function module, namely screening, executing and outputting results.
Although embodiments of the present invention have been described in connection with the accompanying drawings, various modifications and variations may be made by those skilled in the art without departing from the spirit and scope of the invention, and such modifications and variations are within the scope of the invention as defined by the appended claims.
Claims (3)
1. The local area network access method based on the WeChat is applied to a WeChat client, and is characterized by comprising the following steps:
Sending an access request to a server of a local area network;
Receiving a token and a WeChat message encryption key sent by the server, wherein the token and the WeChat message encryption key are distributed to the WeChat client after the server performs identity verification on the WeChat client by using the access request;
Sending a simulated access request with the token to the server;
after receiving an access success identification sent by the server, establishing data access with the server based on the token and the WeChat message encryption key, wherein the access success identification is sent after the server verifies that the token carried in the simulated access request is consistent with the token distributed for the WeChat client;
the establishing data access with the server based on the token and the WeChat message encryption key comprises the following steps:
Acquiring the data access requirement of a user;
Generating a data access request based on the data access requirement and the token, wherein the data access request is created in the formats of a sender, a receiver, the token and a command;
Encrypting the data access request by utilizing the WeChat message encryption key, and sending the encrypted data access request to the server;
Receiving access data fed back by the server, wherein the access data is a data access request sent by the WeChat client side and received by the server, decrypting the data access request by utilizing the WeChat message encryption key to obtain a data access requirement and a token of the WeChat client side, judging whether the decrypted token is consistent with the token distributed to the WeChat client side, extracting an operation command in the data access requirement when the decrypted token is consistent with the token distributed to the WeChat client side, calling a corresponding function module based on the operation command to execute corresponding operation to obtain an execution result fed back by the function module, obtaining access data based on the execution result, encrypting the access data and the token by utilizing the WeChat message encryption key to obtain encrypted access data, and sending the encrypted access data to the WeChat client side;
decrypting the access data by using the WeChat message encryption key to obtain decrypted access data;
the sending the access request to the server of the local area network comprises the following steps:
acquiring identity information of a WeChat client;
The method comprises the steps of sending an access request with the identity information to a server so that the server extracts the identity information of a WeChat client from the access request, judging whether the identity information is consistent with the entered identity information of the WeChat client, and determining that the identity verification passes when the identity information is consistent with the entered identity information of the WeChat client.
2. A method for accessing a local area network based on WeChat, applied to a server of the local area network, characterized in that the method comprises the following steps:
receiving an access request sent by a WeChat client, wherein the access request is the identity information of the WeChat client obtained by the WeChat client;
the access request is utilized to carry out identity verification on the WeChat client, and after the identity verification is passed, a token and a WeChat message encryption key are distributed to the WeChat client;
sending the token and the WeChat message encryption key to the WeChat client;
receiving a simulated access request with a token sent by the WeChat client;
verifying whether a token carried in the simulated access request is consistent with a token distributed for the WeChat client;
When the verification is consistent, sending an access success identifier to the WeChat client to establish data access with the WeChat client;
the establishing data access with the WeChat client side comprises the following steps:
The method comprises the steps of receiving a data access request sent by a WeChat client, wherein the data access request is created in the format of a sender, a receiver, a token and a command, acquiring the data access requirement of a user for the WeChat client, generating the data access request based on the data access requirement and the token, encrypting the data access request by utilizing the WeChat message encryption key, and sending the encrypted data access request to a server;
decrypting the data access request by using the WeChat message encryption key to obtain the data access requirement and the token of the WeChat client;
Judging whether the decrypted token is consistent with the token distributed to the WeChat client;
when the data access requirements are consistent, extracting access data based on the data access requirements;
the access data is sent to the WeChat client so that the WeChat client decrypts the access data by using the WeChat message encryption key to obtain decrypted access data;
The sending the access data to the WeChat client comprises:
encrypting the access data and the token by using the WeChat message encryption key to obtain encrypted access data;
sending the encrypted access data to the WeChat client;
the step of verifying the identity of the WeChat client by using the access request comprises the following steps:
extracting the identity information of the WeChat client from the access request;
judging whether the identity information is consistent with the entered identity information of the WeChat client;
when the identity information is consistent with the identity information of the input WeChat client, determining that the identity verification passes;
The extracting access data based on the data access requirement includes:
extracting an operation command in the data access requirement;
Calling a corresponding functional module to execute corresponding operation based on the operation command to obtain an execution result fed back by the functional module;
and obtaining access data based on the execution result.
3. A local area network access system based on WeChat is characterized by comprising a WeChat client and a server of the local area network, wherein,
The WeChat client acquires identity information of the WeChat client, and sends an access request with the identity information to the server;
The method comprises the steps of receiving an access request sent by a WeChat client by a server, carrying out identity verification on the WeChat client by using the access request, distributing a token and a WeChat message encryption key for the WeChat client after the identity verification is passed, sending the token and the WeChat message encryption key to the WeChat client, carrying out identity verification on the WeChat client by using the access request, wherein the step of extracting the identity information of the WeChat client from the access request, judging whether the identity information is consistent with the entered identity information of the WeChat client, and determining that the identity verification is passed when the identity information is consistent with the entered identity information of the WeChat client;
The WeChat client receives the token and the WeChat message encryption key sent by the server; sending a simulated access request with the token to the server;
The server receives a simulated access request with a token sent by the WeChat client, verifies whether the token carried in the simulated access request is consistent with the token distributed for the WeChat client or not, and sends an access success identifier to the WeChat client when the token is verified to be consistent with the token distributed for the WeChat client;
The method comprises the steps of receiving an access success identifier sent by a server, establishing data access with the server based on the token and a micro-message encryption key, establishing data access with the server based on the token and the micro-message encryption key, obtaining data access requirements of a user, generating the data access requests based on the data access requirements and the token, creating the data access requests in a format of a sender, a receiver, the token and a command, encrypting the data access requests by using the micro-message encryption key, sending the encrypted data access requests to the server, receiving access data fed back by the server, decrypting the access data by using the micro-message encryption key, obtaining decrypted access data, wherein the access data is the data access requests sent by the micro-message client, decrypting the data access requests by using the micro-message encryption key, obtaining the data access requirements and the token of the micro-message client, judging whether the data access requirements and the token are consistent with the data access requirements and the command, sending the data access requests to the micro-message encryption module, executing the data access module, and obtaining the data access result after the data access module is executed according to the data access requirements and the data access command is obtained after the data access command is executed.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202310134785.0A CN116170759B (en) | 2023-02-10 | 2023-02-10 | A local area network access method and system based on WeChat |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202310134785.0A CN116170759B (en) | 2023-02-10 | 2023-02-10 | A local area network access method and system based on WeChat |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN116170759A CN116170759A (en) | 2023-05-26 |
| CN116170759B true CN116170759B (en) | 2024-12-13 |
Family
ID=86417894
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202310134785.0A Active CN116170759B (en) | 2023-02-10 | 2023-02-10 | A local area network access method and system based on WeChat |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN116170759B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117579403B (en) * | 2024-01-17 | 2024-03-29 | 永鼎行远(南京)信息科技有限公司 | Device for accessing trusted application |
Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111131488A (en) * | 2019-12-30 | 2020-05-08 | 武汉佰钧成技术有限责任公司 | Remote management method and system for local area network identity recognition unit |
Family Cites Families (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102064995B (en) * | 2009-11-18 | 2012-12-19 | 中兴通讯股份有限公司 | Method and device for link protection in virtual private local area network |
| CN104572654A (en) * | 2013-10-12 | 2015-04-29 | 腾讯科技(深圳)有限公司 | User searching method and device |
| CN105791960A (en) * | 2014-12-22 | 2016-07-20 | 深圳Tcl数字技术有限公司 | Local area network device communication method and system |
| CN106034104B (en) * | 2015-03-07 | 2021-02-12 | 华为技术有限公司 | Verification method, device and system for network application access |
| CN106470190A (en) * | 2015-08-19 | 2017-03-01 | 中兴通讯股份有限公司 | A kind of Web real-time communication platform authentication cut-in method and device |
| US11233649B2 (en) * | 2016-12-22 | 2022-01-25 | Huawei Technologies Co., Ltd. | Application program authorization method, terminal, and server |
| CN106878149A (en) * | 2017-02-13 | 2017-06-20 | 宁波龙喜陆电子科技有限公司 | A kind of foreign-going ship communication means and information switch endpoint based on wechat public number |
| CN109286931B (en) * | 2017-07-20 | 2021-08-10 | 腾讯科技(深圳)有限公司 | Wireless local area network access method and device |
| CN110324276B (en) * | 2018-03-28 | 2022-01-07 | 腾讯科技(深圳)有限公司 | Method, system, terminal and electronic device for logging in application |
| CN112383663B (en) * | 2019-05-08 | 2022-03-04 | 华为技术有限公司 | Display method and device |
| CN111241555B (en) * | 2019-12-30 | 2022-07-12 | 北京顺达同行科技有限公司 | Access method and device for simulating user login, computer equipment and storage medium |
| CN111199037B (en) * | 2020-01-09 | 2022-08-02 | 百度在线网络技术(北京)有限公司 | Login method, system and device |
| CN112165726A (en) * | 2020-09-08 | 2021-01-01 | 杭州涂鸦信息技术有限公司 | Method and system for distributing network to intelligent equipment by WeChat small program |
| CN113067732B (en) * | 2021-03-23 | 2022-08-05 | 北京电信规划设计院有限公司 | Internet access behavior management control method |
| CN113341798A (en) * | 2021-05-28 | 2021-09-03 | 上海云盾信息技术有限公司 | Method, system, device, equipment and storage medium for remotely accessing application |
-
2023
- 2023-02-10 CN CN202310134785.0A patent/CN116170759B/en active Active
Patent Citations (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111131488A (en) * | 2019-12-30 | 2020-05-08 | 武汉佰钧成技术有限责任公司 | Remote management method and system for local area network identity recognition unit |
Also Published As
| Publication number | Publication date |
|---|---|
| CN116170759A (en) | 2023-05-26 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US8347374B2 (en) | Adding client authentication to networked communications | |
| EP3723399A1 (en) | Identity verification method and apparatus | |
| CN109302369B (en) | Data transmission method and device based on key verification | |
| US6895501B1 (en) | Method and apparatus for distributing, interpreting, and storing heterogeneous certificates in a homogenous public key infrastructure | |
| CN107294916B (en) | Single-point logging method, single-sign-on terminal and single-node login system | |
| CN109495445A (en) | Identity identifying method, device, terminal, server and medium based on Internet of Things | |
| CN112766962A (en) | Method for receiving and sending certificate, transaction system, storage medium and electronic device | |
| CN113992346B (en) | Implementation method of security cloud desktop based on national security reinforcement | |
| CN113204772A (en) | Data processing method, device, system, terminal, server and storage medium | |
| CN114338242B (en) | Cross-domain single sign-on access method and system based on block chain technology | |
| CN114218598B (en) | Service processing method, device, equipment and storage medium | |
| CN114390524B (en) | Method and device for realizing one-key login service | |
| CN104579657A (en) | Method and device for identity authentication | |
| CN111654503A (en) | Remote control method, device, equipment and storage medium | |
| CN116170759B (en) | A local area network access method and system based on WeChat | |
| CN112927026A (en) | Coupon processing method and device, electronic equipment and computer storage medium | |
| US11611541B2 (en) | Secure method to replicate on-premise secrets in a cloud environment | |
| CN111224958A (en) | Data transmission method and system | |
| CN110659471A (en) | Identity authentication login method in cloud environment | |
| CN110912857A (en) | Method and storage medium for sharing login between mobile applications | |
| CN118606918A (en) | Authentication method, device, electronic device, storage medium and program product | |
| CN115955364B (en) | User identity information confidentiality method and system of network bidding transaction system | |
| US9281947B2 (en) | Security mechanism within a local area network | |
| US7852782B2 (en) | Method of creating a split terminal between a base terminal and equipments connected in series | |
| KR101760718B1 (en) | System and method for managing mobile device based on pairing |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |