DATA PROCESSING METHOD AND APPARATUS BASED ON MOBILE APPLICATION ENTRANCE AND SYSTEM
First Claim
1. A data processing method performed at a computer system having one or more processors and memory for storing a plurality of programs managing application programming interfaces (APIs) and mobile application entrances, the method comprising:
- receiving an application programming interface invocation request initiated by an application system, the API invocation request carrying an identifier of a mobile application entrance to which the application system belongs, an application system identifier, and first authentication information;
obtaining permission information corresponding to the application system according to the identifier of the mobile application entrance and the application system identifier;
performing authentication on the API invocation request according to the permission information and the first authentication information;
sending an authentication succeeded result to the application system in accordance with a determination that the authentication succeeds, so that the application system invokes one of the APIs for data processing; and
sending an authentication failed result to the application system in accordance with a determination that the authentication fails.
1 Assignment
0 Petitions
Accused Products
Abstract
A data processing method is performed at a computer system managing application programming interfaces (APIs) and mobile application entrances. An API invocation request initiated by an application system is received by the computer system, permission information corresponding to the application system is obtained according to an identifier of the mobile application entrance and an application system identifier that are carried in the API invocation request, then authentication is performed on the API invocation request according to the permission information and first authentication information carried in the API invocation request, and the application system is allowed to invoke an API for data processing when the authentication succeeds, so that internal data corruption caused due to that each application system at a mobile application entrance randomly invoke the API is avoided, thereby implementing uniform management on the internal data, greatly strengthening data security, and facilitating API interface expansion.
9 Citations
18 Claims
-
1. A data processing method performed at a computer system having one or more processors and memory for storing a plurality of programs managing application programming interfaces (APIs) and mobile application entrances, the method comprising:
-
receiving an application programming interface invocation request initiated by an application system, the API invocation request carrying an identifier of a mobile application entrance to which the application system belongs, an application system identifier, and first authentication information; obtaining permission information corresponding to the application system according to the identifier of the mobile application entrance and the application system identifier; performing authentication on the API invocation request according to the permission information and the first authentication information; sending an authentication succeeded result to the application system in accordance with a determination that the authentication succeeds, so that the application system invokes one of the APIs for data processing; and sending an authentication failed result to the application system in accordance with a determination that the authentication fails. - View Dependent Claims (2, 3, 4, 5, 6, 7, 8, 9)
-
-
10. A computer system, comprising:
-
one or more processors; memory; a plurality of programs stored in the memory and configured to manage application programming interfaces (APIs) and mobile application entrances, wherein the plurality of programs further include; a receiving unit, configured to receive an application programming interface invocation request initiated by an application system, the API invocation request carrying an identifier of a mobile application entrance to which the application system belongs, an application system identifier, and first authentication information; an obtaining unit, configured to obtain permission information corresponding to the application system according to the identifier of the mobile application entrance and the application system identifier; an authentication unit, configured to perform authentication on the API invocation request according to the permission information and the first authentication information; and a sending unit, configured to;
send an authentication succeeded result to the application system in accordance with a determination that the authentication succeeds, so that the application system invokes one of the APIs for data processing; and
send an authentication failed result to the application system in accordance with a determination that the authentication fails. - View Dependent Claims (11, 12, 13, 14, 15, 16, 17)
-
-
18. A non-transitory computer readable storage medium storing a plurality of programs managing application programming interfaces (APIs) and mobile application entrances, in conjunction with a computer system having one or more processors that execute the programs to perform operations including:
-
receiving an application programming interface invocation request initiated by an application system, the API invocation request carrying an identifier of a mobile application entrance to which the application system belongs, an application system identifier, and first authentication information; obtaining permission information corresponding to the application system according to the identifier of the mobile application entrance and the application system identifier; performing authentication on the API invocation request according to the permission information and the first authentication information; sending an authentication succeeded result to the application system in accordance with a determination that the authentication succeeds, so that the application system invokes one of the APIs for data processing; and sending an authentication failed result to the application system in accordance with a determination that the authentication fails.
-
Specification