主权项 |
1. An authentication and authorization method, wherein the method is used in an authentication and authorization system, comprising:
receiving, by an application programming interface (API) of a client, an authentication request transmitted from a first device; transmitting, by an authentication and authorization client subsystem, the authentication request to an authentication and authorization server subsystem; authenticating, by the authentication and authorization server subsystem, the authentication request and generating authentication information; generating, by the authentication and authorization client subsystem, an authorization request used to request a second device for authorization according to the authentication information; and authenticating, by the authentication and authorization server subsystem, the authorization request, generating an authorization information and transmitting the authorization information to the first device through the authentication and authorization client subsystem so that the first device communicates with the second device directly according to the authorization information. |