Search

CN-122022817-A - Service execution method and device, storage medium and electronic equipment

CN122022817ACN 122022817 ACN122022817 ACN 122022817ACN-122022817-A

Abstract

The embodiment of the specification discloses a service execution method, which is characterized in that a target user shares information to be shared with a shared user, so that when the shared user can execute target service based on the information to be shared later, the shared user needs to send a sharing request to a server, the server inquires the risk level of the target user, generates a token associated with the user identification of the target user, determines the validity period of the token according to the risk level of the target user, returns the token to a user terminal, and the user terminal sends the token carried in the information to be shared to the shared user. By the method, whether the target service is executed for the shared user can be controlled through the validity period of the token, the service execution can be controlled in real time and efficiently, and the safety of the service execution is effectively improved.

Inventors

  • HOU YI

Assignees

  • 支付宝(杭州)数字服务技术有限公司

Dates

Publication Date
20260512
Application Date
20260130

Claims (13)

  1. 1. A method of service execution, the method comprising: obtaining a sharing request sent by a target user through a user terminal; Inquiring the risk level of the target user according to the user identification of the target user carried in the sharing request; Generating a token associated with the user identifier, and determining the validity period of the token according to the risk level of the target user; Returning the token to the user terminal, so that the user terminal carries the token in the information to be shared and sends the information to the shared user; receiving an execution request for executing a target service, which is sent by the shared user according to the information to be shared, wherein the execution request at least carries the token; And judging whether the target service is provided for the shared user according to the validity period of the token.
  2. 2. The method of claim 1, prior to querying the risk level of the target user, the method further comprising: determining the risk level of the target user according to the historical user data of the target user, and adding the user identification of the target user into a risk user list corresponding to the risk level of the target user; Querying the risk level of the target user specifically comprises the following steps: inquiring the user identification of the target user in each risk user list, and determining the risk level corresponding to the risk user list containing the user identification of the target user as the risk level of the target user.
  3. 3. The method according to claim 2, wherein determining the validity period of the token according to the risk level of the target user specifically comprises: For each risk user list containing the user identification, determining the validity period configured for the risk level corresponding to the risk user list in advance according to the risk level corresponding to the risk user list, and taking the validity period as a candidate validity period; and determining the shortest candidate validity period of all the candidate validity periods as the validity period of the token.
  4. 4. The method of claim 1, wherein determining whether to provide the target service for the shared user according to the validity period of the token comprises: Judging whether the current moment falls into the validity period of the token or not; if yes, providing the target service for the shared user; Otherwise, refusing to provide the target service for the shared user.
  5. 5. The method of claim 4, further comprising, prior to providing the target service to the shared user: Determining a user identification of the target user associated with the token; And determining that the risk level of the target user is unchanged in the time period from the generation of the token to the current moment according to the user identification of the target user.
  6. 6. The method of claim 5, the method further comprising: and refusing to provide the target service for the shared user when the risk level of the target user changes in the time period from the generation of the token to the current moment.
  7. 7. The method of any one of claims 1 to 6, wherein the information to be shared includes user information of the target user and address information for executing a second service to be executed; Providing the target service for the shared user, which specifically comprises the following steps: according to the user information of the target user carried in the execution request, sending an acquisition request for acquiring a virtual service card of the target user to the target user; After receiving an acquisition permission response message returned by the target user based on the acquisition request, acquiring a copy of the virtual service card of the target user, storing the copy of the virtual service card of the target user in the service card pool of the shared user, and providing the copy of the virtual service card of the shared user to the target user; And executing the second service to be executed for the shared user when the attribute data of the target service card selected by the shared user in the service card pool meets the execution condition of the second service to be executed.
  8. 8. The method of any one of claims 1-6, wherein the information to be shared includes address information for obtaining puzzle information and a complete image, and the complete image is an image obtained by adding answer information corresponding to the puzzle information to a prompt image included in the puzzle information; Providing the target service for the shared user, which specifically comprises the following steps: When the attribute data of the virtual service cards of other users obtained by the shared user in the preset time period is matched with the answer information, the maximum capacity of the service card pool of the shared user is increased according to the preset capacity increment, the service card pool for sharing is used for storing the virtual service cards of the shared user and the copies of the virtual service cards of other users obtained by the shared user, or And when the attribute data of the virtual service cards of other users obtained by the shared user in the preset time period is matched with the answer information, providing preset resources corresponding to the first service to be executed for the shared user.
  9. 9. The method of any one of claims 1 to 6, wherein the information to be shared includes a card identifier for executing an integrated card activity service; Providing the target service for the shared user, which specifically comprises the following steps: Providing the card corresponding to the card identifier for the shared user; And when the shared user obtains the card of the specified type, providing the resource corresponding to the integrated card activity service for the shared user.
  10. 10. A service execution apparatus, the apparatus comprising: The acquisition module is used for acquiring a sharing request sent by a target user through a user terminal; the query module is used for querying the risk level of the target user according to the user identification of the target user carried in the sharing request; the generation module is used for generating a token associated with the user identifier and determining the validity period of the token according to the risk level of the target user; The return module is used for returning the token to the user terminal, so that the user terminal carries the token in the information to be shared and sends the information to the shared user; The receiving module is used for receiving an execution request for executing a target service, which is sent by the shared user according to the information to be shared, wherein the execution request at least carries the token; And the execution module is used for judging whether the target service is provided for the shared user or not according to the validity period of the token.
  11. 11. A computer readable storage medium storing a computer program which, when executed by a processor, implements the method of any of the preceding claims 1-9.
  12. 12. An electronic device comprising a memory, a processor and a computer program stored on the memory and executable on the processor, the processor implementing the method of any of the preceding claims 1-9 when the program is executed.
  13. 13. A computer program product comprising a computer program which, when executed by a processor, implements the method of any of the preceding claims 1-9.

Description

Service execution method and device, storage medium and electronic equipment Technical Field The present disclosure relates to the field of computer technologies, and in particular, to a service execution method, a device, a storage medium, and an electronic apparatus. Background With the development of the age, service providers have been able to provide users with various services, and some services directly provide users with resources such as money or coupons. Some attackers can maliciously use resources provided by the services to make benefits through a large number of zombie accounts, which seriously damages fairness of the services and erodes rights and interests of normal users. Although there are also wind control means for these services at present, most of these wind control means are post-manual auditing, which is not only inefficient, but also has significant hysteresis relative to service execution. Therefore, how to improve the security of service execution is a urgent problem to be solved. Disclosure of Invention The embodiment of the specification provides a service execution method, a device, a storage medium and an electronic device, so as to partially solve the problems in the prior art. The embodiment of the specification adopts the following technical scheme: The service execution method provided by the specification comprises the following steps: obtaining a sharing request sent by a target user through a user terminal; Inquiring the risk level of the target user according to the user identification of the target user carried in the sharing request; Generating a token associated with the user identifier, and determining the validity period of the token according to the risk level of the target user; Returning the token to the user terminal, so that the user terminal carries the token in the information to be shared and sends the information to the shared user; receiving an execution request for executing a target service, which is sent by the shared user according to the information to be shared, wherein the execution request at least carries the token; And judging whether the target service is provided for the shared user according to the validity period of the token. The service execution device provided in the present specification, the device includes: The acquisition module is used for acquiring a sharing request sent by a target user through a user terminal; the query module is used for querying the risk level of the target user according to the user identification of the target user carried in the sharing request; the generation module is used for generating a token associated with the user identifier and determining the validity period of the token according to the risk level of the target user; The return module is used for returning the token to the user terminal, so that the user terminal carries the token in the information to be shared and sends the information to the shared user; The receiving module is used for receiving an execution request for executing a target service, which is sent by the shared user according to the information to be shared, wherein the execution request at least carries the token; And the execution module is used for judging whether the target service is provided for the shared user or not according to the validity period of the token. A computer-readable storage medium is provided in the present specification, the storage medium storing a computer program that, when executed by a processor, implements the above-described service execution method. The electronic device provided by the specification comprises a memory, a processor and a computer program stored on the memory and capable of running on the processor, wherein the processor realizes the service execution method when executing the program. A computer program product is provided in the present specification, where the computer program product includes a computer program, and the computer program when executed by a processor implements the service execution method described above. The above-mentioned at least one technical scheme that this description embodiment adopted can reach following beneficial effect: the embodiment of the specification discloses a service execution method, which is characterized in that a target user shares information to be shared with a shared user, so that when the shared user can execute target service based on the information to be shared later, the shared user needs to send a sharing request to a server, the server inquires the risk level of the target user, generates a token associated with the user identification of the target user, determines the validity period of the token according to the risk level of the target user, returns the token to a user terminal, and the user terminal sends the token carried in the information to be shared to the shared user. By the method, whether the target service is executed for the shared user can be controlled through