Single sign-on functionality for a multi-tenant identity and data security management cloud service
US-2018075231-A1 · Mar 15, 2018 · US
Login Method and System Based on Cloud Application Instance, and Related Device
US2023054057A1 · US · A1
| Field | Value |
|---|---|
| Publication number | US-2023054057-A1 |
| Application number | US-202217976398-A |
| Country | US |
| Kind code | A1 |
| Filing date | Oct 28, 2022 |
| Priority date | Apr 30, 2020 |
| Publication date | Feb 23, 2023 |
| Grant date | — |
How to read this patent
A practical reading order for non-experts. Skip the full description unless you need deep technical detail.
- Title
What the patent document calls the invention.
- Abstract
A short plain-language summary of the technical disclosure.
- Assignees and inventors
Who owns or filed the patent and who is credited as inventor.
- Key dates
Filing, priority, publication, and grant dates set the timeline.
- First independent claim
The legal scope of protection — read this for what is actually claimed.
- CPC / IPC classifications
Technology tags used to group this patent with similar filings.
- Citations and related patents
Prior art links and similar publications in this corpus.
Abstract
Official abstract text for this publication.
A login method and system based on a cloud application instance, and a related device are provided. The method includes the following steps: A cloud application instance sends a login request for an application service node to a terminal device, such that after obtaining a login password input by a user, the terminal device sends a verification request carrying the login password and a device identity of the cloud application instance to an account management node. The account management node may verify the login password, and send verification success information to the cloud application instance. The cloud application instance logs in to the application service node based on the verification success information using.
First claim
Opening claim text (preview).
What is claimed is: 1 . A login method based on a cloud application instance, comprising: sending, by a cloud application instance, a login request for an application service node to a terminal device; obtaining, by the terminal device based on the login request, a login password input by a user, and sending a verification request that carries the login password and a device identity of the cloud application instance to an account management node; verifying, by the account management node, the login password, generating verification success information when the verification succeeds, and sending the verification success information to the cloud application instance based on the device identity; and logging in, by the cloud application instance, to the application service node based on the verification success information. 2 . The method according to claim 1 , wherein before the verifying, by the account management node, the login password, the method further comprises: recording, by the account management node, registration information, wherein the registration information comprises a first correspondence between a cloud platform account and a registration password; and recording, by the account management node, instance status information, wherein the instance status information comprises a second correspondence between the cloud platform account and the device identity of the cloud application instance; and the verifying, by the account management node, the login password comprises: obtaining, by the account management node, the cloud platform account from the second correspondence based on the device identity of the cloud application instance that is carried in the verification request, obtaining the registration password from the first correspondence based on the cloud platform account, comparing the login password with the registration password, and when the login password is consistent with the registration password, confirming that the verification succeeds. 3 . The method according to claim 1 , wherein the sending the verification success information to the cloud application instance based on the device identity comprises: sending, by the cloud application instance, a verification result obtaining request to the account management node, wherein the verification result obtaining request carries the device identity of the cloud application instance; and sending, by the account management node, the verification success information to the cloud application instance based on the device identity of the cloud application instance that is carried in the verification result obtaining request. 4 . The method according to claim 1 , wherein the logging in, by the cloud application instance, to the application service node based on the verification success information comprises: sending, by the cloud application instance, the verification success information to the application service node; sending, by the application service node, a check request to the account management node, wherein the check request carries the verification success information; determining, by the account management node, that the account management node records the verification success information, and sending an application account creation request to the application service node; and creating, by the application service node, an application account based on the application account creation request, and allowing the cloud application instance to log in to the application service node by using the application account. 5 . The method according to claim 1 , wherein before the sending, by a cloud application instance, a login request for an application service node to a terminal device, the method further comprises: establishing, by the terminal device, a connection channel to the cloud application instance, and obtaining the device identity from the cloud application instance. 6 . The method according to claim 1 , wherein the cloud application instance comprises a virtual machine, a container, and a bare metal server. 7 . The method according to claim 1 , wherein the application service node comprises a game server, an education application service node, a video application service node, a social application service node, and a virtual reality application service node. 8 . A login system based on a cloud application instance, comprising the cloud application instance , configured to send a login request for an application service node to a terminal device; the terminal device , configured to: obtain, based on the login request, a login password input by a user, and send a verification request that carries the login password and a device identity of the cloud application instance to an account management node; the account management node, configured to: verify the login password, generate verification success information when the verification succeeds, and send the verification success information to the cloud application instance based on the device identity; and the cloud application instance, further configured to log in to the application service node based on the verification success information. 9 . The system according to claim 8 , wherein the account management node is configured to: before verifying the login password, record registration information, wherein the registration information comprises a first correspondence between a cloud platform account and a registration password; the account management node is configured to record instance status information, wherein the instance status information comprises a second correspondence between the cloud platform account and the device identity of the cloud application instance; and the account management node is configured to: obtain the cloud platform account from the second correspondence based on the device identity of the cloud application instance that is carried in the verification request, obtain the registration password from the first correspondence based on the cloud platform account, compare the login password with the registration password, and when the login password is consistent with the registration password, confirm that the verification succeeds. 10 . The system according to claim 8 , wherein the cloud application instance is configured to send a verification result obtaining request to the account management node, wherein the verification result obtaining request carries the device identity of the cloud application instance; and the account management node is configured to send the verification success information to the cloud application instance based on the device identity of the cloud application instance that is carried in the verification result obtaining request. 11 . The system according to claim 8 , wherein the cloud application instance is configured to send the verification success information to the application service node; the application service node is configured to send a check request to the account management node, wherein the check request carries the verification success information; the account management node is configured to: determine that the account management node records the verification success information, and send an application account creation request to the application service node; and the application service node is configured to: create an application account based on the application creation request, and allow the cloud application instance to log in to the application service node using the application account. 12 . The system according to claim 8 , wherein the terminal device is configured to: before sending the login request for the application service node to the
Assignees
Inventors
Classifications
by delegation of authentication, e.g. a proxy authenticates an entity to be authenticated on behalf of this entity vis-à-vis an authentication entity · CPC title
- G06Q20/4097Primary
using mutual authentication between devices and transaction partners · CPC title
for authentication of entities (cryptographic mechanisms or cryptographic arrangements for entity authentication H04L9/32) · CPC title
Entity profiles · CPC title
using tickets, e.g. Kerberos (cryptographic mechanisms or cryptographic arrangements for entity authentication using tickets or tokens H04L9/3213) · CPC title
Patent family
Related publications grouped by family.
External sources
Frequently asked questions
Answers are generated from the same data shown on this page.
- What does patent US2023054057A1 cover?
- A login method and system based on a cloud application instance, and a related device are provided. The method includes the following steps: A cloud application instance sends a login request for an application service node to a terminal device, such that after obtaining a login password input by a user, the terminal device sends a verification request carrying the login password and a device i…
- Who is the assignee on this patent?
- Huawei Cloud Computing Tech Co Ltd
- What technology area does this patent fall under?
- Primary CPC classification G06Q20/4097. Mapped technology areas include Physics.
- When was this patent published?
- Publication date Thu Feb 23 2023 00:00:00 GMT+0000 (Coordinated Universal Time) (A1). Legal status and post-grant events are not shown on this page.
- What related patents are in patentsdb?
- We list 3 related publications on this page (citations in our corpus or others sharing the same primary CPC).