Search

CN-116032528-B - User data access method, device, computer equipment and storage medium

CN116032528BCN 116032528 BCN116032528 BCN 116032528BCN-116032528-B

Abstract

The application relates to a user data access method, a user data access device, computer equipment and a storage medium. The method comprises the steps of obtaining user data information authorized by a user and application access information of a third party, wherein the application access information is target user data information identification of the third party for applying to access the user, selecting the target user data information according to the target user data information identification in the user data information through a session platform, generating an identification code of the target user data information and an authorization code for accessing the target user data information, accessing the target user data information of the user according to the identification code and the authorization code, and canceling the identification code and the authorization code and closing the session platform in response to the operation of closing the session platform by the user. By adopting the method, the safety protection effect of the user data information when the user data is accessed can be improved.

Inventors

  • LI HONGWEI
  • YU XIANGXIN
  • ZHANG HONG
  • Fang Kunshuo
  • YE PINYUAN
  • SONG JIAXIN
  • LI MINGXIA

Assignees

  • 深圳海智创科技有限公司

Dates

Publication Date
20260512
Application Date
20221111

Claims (9)

  1. 1. A method of user data access, the method comprising: Acquiring user data information authorized by a user and application access information of a third party, wherein the application access information is a target user data information identifier of the third party applying for accessing the user; Selecting target user data information from the user data information according to the target user data information identification through a session platform, and generating an identification code of the target user data information and an authorization code for accessing the target user data information; Accessing target user data information of the user according to the identification code and the authorization code; responding to the operation of closing the session platform by a user, logging off the identification code and the authorization code, and closing the session platform; The user data information comprises address information of the user, application access information of the third party and address information of the third party, after the user data information authorized by the user and the application access information of the third party are obtained, the method comprises the steps of establishing a communication transmission platform of the user and the third party according to the address information of the user and the address information of the third party, conducting encryption processing on the communication transmission platform, and generating access identification information between the user and the communication transmission platform and between the third party and the communication transmission platform to obtain a session platform of the user and the third party, wherein the access identification information is used for identifying the user and the third party and enabling the user and the third party to access the communication transmission platform.
  2. 2. The method according to claim 1, wherein the obtaining the user data information authorized by the user and the application access information of the third party includes: acquiring application access information of the third party, wherein the application access information comprises identity information of the third party; Transmitting the identity information of the third party to a user, and responding to the authorization operation of the user to acquire the user data information authorized by the user.
  3. 3. The method according to claim 1, wherein the selecting, by the session platform, the target user data information from the user data information identification according to the target user data information identification, and generating the identification code of the target user data information, and the authorization code for accessing the target user data information, includes: Selecting user data information corresponding to the target user data information identification from the user data information of the user according to the target user data information identification of the third party through the session platform to obtain target user data information; Performing identification adding processing on each piece of target user data information to obtain identification of each piece of target user data information, and establishing an identification code corresponding to each identification to obtain an identification code of each piece of target user data information; And encrypting each piece of target user data information and generating an authorization code corresponding to the target user data information, wherein the authorization code is used for accessing the target user data information.
  4. 4. The method of claim 1, wherein said accessing the user's target user data information based on the identification code and the authorization code comprises: Determining whether the user data information is accessible to the third party according to the authorization code; and calling the target user data information on the session platform according to the identification code under the condition that the third party can access the user data information.
  5. 5. The method of claim 1, wherein said logging off the identification code and the authorization code and closing the session platform in response to a user closing the session platform comprises: responding to the operation of closing the session platform by the user, acquiring the cancellation authorization information of the user, and sending termination service prompt information to the user and the third party; and according to the cancellation authorization information, canceling the identification code and the authorization code, and closing the session platform.
  6. 6. A user data access apparatus applying the method of claim 1, the apparatus comprising: the system comprises an acquisition module, a third party access request module and a user authentication module, wherein the acquisition module is used for acquiring user data information authorized by a user and application access information of the third party, wherein the application access information is a target user data information identifier of the third party for applying to access the user; the generation module is used for selecting target user data information according to the target user data information identification in the user data information through the session platform, and generating an identification code of the target user data information and an authorization code for accessing the target user data information; the access module is used for accessing the target user data information of the user according to the identification code and the authorization code; and the cancellation module is used for canceling the identification code and the authorization code and closing the session platform in response to the operation of closing the session platform by the user.
  7. 7. A computer device comprising a memory and a processor, the memory storing a computer program, characterized in that the processor implements the steps of the method of any one of claims 1 to 5 when the computer program is executed.
  8. 8. A computer readable storage medium, on which a computer program is stored, characterized in that the computer program, when being executed by a processor, implements the steps of the method of any of claims 1 to 5.
  9. 9. A computer program product comprising a computer program, characterized in that the computer program, when being executed by a processor, implements the steps of the method according to any one of claims 1 to 5.

Description

User data access method, device, computer equipment and storage medium Technical Field The present application relates to the field of artificial intelligence technology, and in particular, to a user data access method, apparatus, computer device, storage medium, and computer program product. Background The home health management system is connected with a professional medical institution, and the professional medical institution provides on-line consultation and health consultation services for the user. In the inquiry process, the user sets forth symptoms and inquiry requirements for the professional medical institution, the professional medical institution can apply for accessing the health data and the exercise data of the user in the inquiry process, and more scientific diagnosis service can be provided according to the health data and the exercise data of the user. In the prior art, after a cooperation relationship is established between a home health system and a system of a third-party medical institution based on user authorization access control among cloud platforms, a third-party service unique identifier (AppID) and an access key (AuthorizationKey) are allocated to the third-party medical institution, the system of the third-party medical institution needs to access personal privacy data (health and motion data) of a user, a user needs to jump to an obtained user authorization page, after the user clicks the authorization page to agree with the authorization, codes and accesstoken are generated, the system of the third-party medical institution uses the AppID and AuthorizationKey, accesstoken to request to access the personal privacy data (health and motion data) of the user, and an authorization management service performs authority control on accesstoken according to a configured strategy, such as single authorization, permanent authorization and authorization within a certain time. The access control strategy has certain shortages or potential safety hazards, for example, after the inquiry of the user is finished, the system of the third-party medical institution can illegally access the private data of the user, for example, the system of the third-party medical institution needs multiple user authorizations and the like, so that the safety protection effect of the user data information is poor when the user data is accessed. Disclosure of Invention In view of the foregoing, it is desirable to provide a user data access method, apparatus, computer device, computer readable storage medium, and computer program product. In a first aspect, the present application provides a method for accessing user data. The method comprises the following steps: Acquiring user data information authorized by a user and application access information of a third party, wherein the application access information is a target user data information identifier of the third party applying for accessing the user; Selecting target user data information from the user data information according to the target user data information identification through a session platform, and generating an identification code of the target user data information and an authorization code for accessing the target user data information; Accessing target user data information of the user according to the identification code and the authorization code; And in response to the operation of closing the session platform by the user, logging off the identification code and the authorization code, and closing the session platform. Optionally, the obtaining the user data information authorized by the user and the application access information of the third party includes: acquiring application access information of the third party, wherein the application access information comprises identity information of the third party; Transmitting the identity information of the third party to a user, and responding to the authorization operation of the user to acquire the user data information authorized by the user. Optionally, the user data information includes address information of the user, the application access information of the third party includes address information of the third party, and after the user data information authorized by the user and the application access information of the third party are obtained, the method includes: Establishing a communication transmission platform between the user and the third party according to the address information of the user and the address information of the third party; And encrypting the communication transmission platform, and generating access identification information between the user and the communication transmission platform and between the third party and the communication platform to obtain a session platform of the user and the third party, wherein the access identification information is used for identifying the user and the third party and enabling the user and the third party to access the