CN109033810A - A kind of Rights Management System - Google Patents
A kind of Rights Management System Download PDFInfo
- Publication number
- CN109033810A CN109033810A CN201810896311.9A CN201810896311A CN109033810A CN 109033810 A CN109033810 A CN 109033810A CN 201810896311 A CN201810896311 A CN 201810896311A CN 109033810 A CN109033810 A CN 109033810A
- Authority
- CN
- China
- Prior art keywords
- permission
- role information
- rights management
- user
- management system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING OR CALCULATING; COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a kind of Rights Management System, belong to rights management techniques field, it is mainly used in the operation system of Jing An network technology limited liability company of Zhengzhou City, the relationship between all users and permission is only being managed in existing Rights Management System, with the increase of permission, relationship between user and permission becomes increasingly complex, cause the permission of user indefinite, for these problems, problems can be allowed to avoid as far as possible, with having added a post between user and permission, to this, user and post are direct relations, post and permission are direct relations, a few users and permission are direct relation, and the permission that a few users are possessed is privilege, lead to the indefinite of permission with the increase of permission to eliminate, the management for keeping the relationship of user and permission i.e. clear and easy.
Description
Technical field
The invention belongs to rights management techniques fields, and in particular to a kind of Rights Management System.
Background technique
Rights management, refers generally to the safety regulation or security strategy being arranged according to system, and user is accessible and only
Oneself authorized resource can be accessed, it is neither too much nor too little.Rights management occurs nearly in inside any system, as long as having user and Mi
The system of code.Currently, existing Rights Management System obtains data, foreground ztree exhibition using springMVC+hibernate
Registration evidence, and show incidence relation, existing Rights Management System is substantially exactly to manage between all access links and user
Relationship, it is necessary to which each link will be added in Rights Management System, otherwise have no idea to manage and owner does not have
This function privilege;With the increase that permission links, the relationship between permission and user becomes increasingly complex, and will necessarily result in permission
It is indefinite.
Summary of the invention
It is an object of the invention in order to overcome the relationship in existing Rights Management System between user and permission, while with
The increase of permission link, the relationship between permission and user becomes increasingly complex, leads to the indefinite of permission, be not easy to manage.
The technical solution adopted by the invention is as follows:
A kind of Rights Management System characterized by comprising
User terminal: post application is carried out for establishing Role Information, and with Role Information;
Post end: it is included into same post for receiving Role Information, and by the Role Information of same type, and is user point
With post;
Permission end: for adding permission and being stored according in database, the authority information of storage to each Role Information into
Row authority distribution, and the authority distribution of Role Information will be distributed to post.
Further, the permission in the permission end includes common permission and privilege.
Further, for adding permission and the specific steps of storage in the database in the permission end are as follows:
It is addition permission that step 1, request, which are seen,;
Step 2 is linked according to permission, selects single addition permission or batch addition permission;
Step 3 adds permission if batch, fills in function title according to be selected some increased permission to link, right
The addition permission link of function title is answered, and for single permission is added in database after permission link selection permission type;
Step 4 is added if batch, fills in function title for all permissions link, corresponding function title adds permission chain
It connects, and is permission link selection permission type, arrange all types of permissions, and batch permission is added in database.
Further, the authority information of storage is carried out to each Role Information in the permission end specific steps of authority distribution
Are as follows:
Step S1, permission is distributed, judges whether user possesses privilege, if so, then directly being distributed, if not having, holds
Row step S2;
Step S2, common permission is distributed to Role Information, and will according to the Role Information of foundation by common authority distribution
The authority distribution of Role Information is distributed to post.
Further, after adding permission, display function title when display does not show that permission links.
When further, to access operation is carried out after user right distribution, if first judging the meeting when one privilege feature of access
Whether member possesses the operating right of this function, is not operated if it is not, intercepting, and the member is prompted to have no right to grasp
Make, conversely, then carrying out corresponding operation.
In conclusion by adopting the above-described technical solution, the beneficial effects of the present invention are:
1, a kind of Rights Management System of the present invention, comprising: user terminal uses Role Information for establishing Role Information
Carry out post application;Same post is included into for receiving Role Information, and by the Role Information of same type in post end, and to use
Post is distributed at family;Permission end is for adding permission and being stored according in database, the authority information of storage to each Role Information
Authority distribution is carried out, and the authority distribution of Role Information will be distributed to post, post is responsible for managing user and role, plays and holds
On open under effect, while a post can correspond to multiple roles.
2, a kind of Rights Management System of the present invention, the permission in the permission end include common permission and privilege, general
Logical permission is all for most people, and privilege is only all for a few peoples.
3, a kind of Rights Management System of the present invention, for adding permission and storing in the database in the permission end
Specific steps are as follows:
It is addition permission that step 1, request, which are seen,;
Step 2 is linked according to permission, selects single addition permission or batch addition permission;
Step 3 adds permission if batch, fills in function title according to be selected some increased permission to link, right
The addition permission link of function title is answered, and for single permission is added in database after permission link selection permission type;
Step 4 is added if batch, fills in function title for all permissions link, corresponding function title adds permission chain
It connects, and is permission link selection permission type, arrange all types of permissions, and batch permission is added in database,
Addition during for facilitating operation.
4, a kind of Rights Management System of the present invention, the authority information in the permission end storage is to each Role Information
Carry out the specific steps of authority distribution are as follows:
Step S1, permission is distributed, judges whether user possesses privilege, if so, then directly being distributed, if not having, holds
Row step S2;
Step S2, common permission is distributed to Role Information, and will according to the Role Information of foundation by common authority distribution
The authority distribution of Role Information is distributed to post,
In distribution, operation clearly prevents authority distribution mistake.
5, a kind of Rights Management System of the present invention, after adding permission, display function title when display is not shown
Show that permission links, guarantees the safety and convenience of permission link.
6, a kind of Rights Management System of the present invention, when to carrying out access operation after user right distribution, if access one
First judge whether the member possesses the operating right of this function when a privilege feature, is not grasped if it is not, intercepting
Make, and the member is prompted to have no right to operate, conversely, then carry out corresponding operation, prevents what permission in database from increasing to cause to go beyond one's commission
Operation.
Detailed description of the invention
In order to illustrate the technical solution of the embodiments of the present invention more clearly, below will be to needed in the embodiment attached
Figure is briefly described, it should be understood that the following drawings illustrates only certain embodiments of the present invention, therefore is not construed as pair
The restriction of range for those of ordinary skill in the art without creative efforts, can also be according to this
A little attached drawings obtain other relevant attached drawings.
Fig. 1 is present invention addition permission flow chart.
Fig. 2 is authority distribution management flow chart of the present invention.
Specific embodiment
In order to make the objectives, technical solutions, and advantages of the present invention clearer, with reference to the accompanying drawings and embodiments, right
The present invention is further elaborated.It should be appreciated that described herein, specific examples are only used to explain the present invention, not
For limiting the present invention, i.e., described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is logical
The component for the embodiment of the present invention being often described and illustrated herein in the accompanying drawings can be arranged and be designed with a variety of different configurations.
Therefore, the detailed description of the embodiment of the present invention provided in the accompanying drawings is not intended to limit below claimed
The scope of the present invention, but be merely representative of selected embodiment of the invention.Based on the embodiment of the present invention, those skilled in the art
Member's every other embodiment obtained without making creative work, shall fall within the protection scope of the present invention.
It should be noted that the relational terms of term " first " and " second " or the like be used merely to an entity or
Operation is distinguished with another entity or operation, and without necessarily requiring or implying between these entities or operation, there are any
This actual relationship or sequence.Moreover, the terms "include", "comprise" or its any other variant be intended to it is non-exclusive
Property include so that include a series of elements process, method, article or equipment not only include those elements, but also
Further include other elements that are not explicitly listed, or further include for this process, method, article or equipment it is intrinsic
Element.In the absence of more restrictions, the element limited by sentence "including a ...", it is not excluded that including described
There is also other identical elements in the process, method, article or equipment of element.
The present invention provides a kind of Rights Management System, solves the pipe in existing Rights Management System between user and permission
Reason, with the increase of permission, the relationship between permission and user becomes increasingly complex, and causes permission used in user indefinite, is
Problems are solved, joined post between user and permission, allowing post to become user respectively and permission in centre has directly
Relationship reduces the complexity of relationship between user and permission with the increase of this permission, eliminates because complicated between user and permission
Property and cause permission used in user indefinite, to make the clear easy management of relationship between user, post and permission.
Feature and performance of the invention are described in further detail with reference to embodiments.
Embodiment 1
A kind of Rights Management System that present pre-ferred embodiments provide, it is described as shown in Figure 1, Figure 2, wherein in adding for permission
During adding, super keepe can determine single permission addition or batch at permission end according to the quantity of added permission
Addition fills in the function title and permission link of corresponding authority, it is general for selecting the type of link if single permission is selected to add
Logical permission or privilege, add permission according to demand, and addition in the database, similarly, if selection batch adds, needs handle
Whether the function name of permission link, classification, is the information solicitations such as common permission or privilege in table, and import system, which is clicked, to be criticized
Amount addition, system can scan table, permission added according to the information in table, addition in the database, then is added and shown after permission
When display function title, do not show permission link.
Permission carries out authority distribution after having added, and during distribution, system will be with the common permission that shows and privilege
Classify, common permission can distribute to most of user, and a few users possess privilege, in distribution permission, whether judge user
Possess privilege, if so, then directly being distributed, if not having, carries out the distribution of common privilege;For convenience for equity stock limit
Common permission is distributed to corresponding role by permission end and is believed according to the Role Information that user is established in user terminal with distribution
Breath makes Role Information possess these permissions, and will distribute to the authority distribution of Role Information to post at post end, then user
Possess the permission possessed corresponding to these posts by adding post at post end, then can individually be divided by permission end as privilege
To a few users, so that the corresponding user of these permissions be made to use;In Rights Management System, carried out after being distributed to user right
When access operation, when user will access one function of a page or operation, first judge whether the user possesses this
The operating right of function is intercepted and is not operated if not having, and " user does not have access right by dialog box prompt
Limit ", it is franchise then be the direct access authority of user if so, then carry out corresponding operation.
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the invention, all in essence of the invention
Made any modifications, equivalent replacements, and improvements etc., should all be included in the protection scope of the present invention within mind and principle.
Claims (6)
1. a kind of Rights Management System characterized by comprising
User terminal: post application is carried out for establishing Role Information, and with Role Information;
Post end: it is included into same post for receiving Role Information, and by the Role Information of same type, and distributes duty for user
Business;
Permission end: for adding permission and being stored according in database, the authority information of storage weighs each Role Information
Limit distribution, and the authority distribution of Role Information will be distributed to post.
2. a kind of Rights Management System according to claim 1, which is characterized in that the permission in the permission end includes common
Permission and privilege.
3. a kind of Rights Management System according to claim 2, which is characterized in that for adding permission simultaneously in the permission end
The specific steps of storage in the database are as follows:
It is addition permission that step 1, request, which are seen,;
Step 2 is linked according to permission, selects single addition permission or batch addition permission;
Step 3 adds permission if batch, according to be selected increased some permission link to fill in function title, corresponds to function
Energy title addition permission link, and single permission is added in database after selecting permission type for permission link;
Step 4 is added if batch, fills in function title for all permissions link, and corresponding function title adds permission link, and
Selection permission type is linked for permission, arranges all types of permissions, and batch permission is added in database.
4. a kind of Rights Management System according to claim 2, which is characterized in that the permission of storage is believed in the permission end
Cease the specific steps that authority distribution is carried out to each Role Information are as follows:
Step S1, permission is distributed, judges whether user possesses privilege, if so, then directly being distributed, if not having, executes step
Rapid S2;
Step S2, common permission is distributed to Role Information, and will distribution according to the Role Information of foundation by common authority distribution
To Role Information authority distribution to post.
5. a kind of Rights Management System according to claim 3, which is characterized in that after addition permission, display when is only shown
Show function title, does not show that permission links.
6. a kind of Rights Management System according to claim 1, which is characterized in that the behaviour that accesses after user right distribution
When making, if first judging whether the member possesses the operating right of this function when one privilege feature of access, if it is not, blocking
It cuts and is not operated, and the member is prompted to have no right to operate, conversely, then carrying out corresponding operation.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810896311.9A CN109033810A (en) | 2018-08-08 | 2018-08-08 | A kind of Rights Management System |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201810896311.9A CN109033810A (en) | 2018-08-08 | 2018-08-08 | A kind of Rights Management System |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN109033810A true CN109033810A (en) | 2018-12-18 |
Family
ID=64649582
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810896311.9A Pending CN109033810A (en) | 2018-08-08 | 2018-08-08 | A kind of Rights Management System |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109033810A (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110162960A (en) * | 2019-05-22 | 2019-08-23 | 陕西中达公路技术服务有限公司 | A kind of method for verifying authority based on user management |
| WO2021051876A1 (en) * | 2019-09-18 | 2021-03-25 | 平安科技(深圳)有限公司 | Batch authorization method and apparatus for emails, and computer device and storage medium |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101588242A (en) * | 2008-05-19 | 2009-11-25 | 北京亿企通信息技术有限公司 | Method and system for realizing authority management |
| CN102110256A (en) * | 2011-02-09 | 2011-06-29 | 浪潮集团山东通用软件有限公司 | Method for constructing software operating user based on personnel information management system |
| CN102468971A (en) * | 2010-11-04 | 2012-05-23 | 北京北方微电子基地设备工艺研究中心有限责任公司 | Authority management method and device and authority control method and device |
| CA2922181A1 (en) * | 2013-08-23 | 2015-02-26 | Margaret BOUSE | System and method for identity management |
| CN105243335A (en) * | 2015-09-30 | 2016-01-13 | 浪潮集团有限公司 | Rights management method and apparatus |
| CN106529230A (en) * | 2015-09-11 | 2017-03-22 | 上海中和软件有限公司 | Role-based permission control mechanism |
| CN107249139A (en) * | 2017-06-06 | 2017-10-13 | 上海极链网络科技有限公司 | The system interactive applied to the real-time dispensing of live scene |
| CN107395611A (en) * | 2017-08-07 | 2017-11-24 | 成都牵牛草信息技术有限公司 | The method authorized in system to authorised operator |
-
2018
- 2018-08-08 CN CN201810896311.9A patent/CN109033810A/en active Pending
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101588242A (en) * | 2008-05-19 | 2009-11-25 | 北京亿企通信息技术有限公司 | Method and system for realizing authority management |
| CN102468971A (en) * | 2010-11-04 | 2012-05-23 | 北京北方微电子基地设备工艺研究中心有限责任公司 | Authority management method and device and authority control method and device |
| CN102110256A (en) * | 2011-02-09 | 2011-06-29 | 浪潮集团山东通用软件有限公司 | Method for constructing software operating user based on personnel information management system |
| CA2922181A1 (en) * | 2013-08-23 | 2015-02-26 | Margaret BOUSE | System and method for identity management |
| CN106529230A (en) * | 2015-09-11 | 2017-03-22 | 上海中和软件有限公司 | Role-based permission control mechanism |
| CN105243335A (en) * | 2015-09-30 | 2016-01-13 | 浪潮集团有限公司 | Rights management method and apparatus |
| CN107249139A (en) * | 2017-06-06 | 2017-10-13 | 上海极链网络科技有限公司 | The system interactive applied to the real-time dispensing of live scene |
| CN107395611A (en) * | 2017-08-07 | 2017-11-24 | 成都牵牛草信息技术有限公司 | The method authorized in system to authorised operator |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110162960A (en) * | 2019-05-22 | 2019-08-23 | 陕西中达公路技术服务有限公司 | A kind of method for verifying authority based on user management |
| WO2021051876A1 (en) * | 2019-09-18 | 2021-03-25 | 平安科技(深圳)有限公司 | Batch authorization method and apparatus for emails, and computer device and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| EP2510473B1 (en) | Unified user login for co-location facilities | |
| Carminati et al. | Collaborative access control in on-line social networks | |
| US20170041256A1 (en) | Network operating system and method for messaging within an access control model | |
| EP1829316B1 (en) | Means and method for control of personal data | |
| CN105871914A (en) | Customer-relationship-management-system access control method | |
| CN110032886A (en) | The method and apparatus of access authorization for resource management | |
| CN110851867A (en) | Medical data sharing method based on block chain | |
| CN102215237A (en) | Implementation method for grade-based passive registered real-name alumni service | |
| CN106096976A (en) | Small business's client relation management method | |
| Möhlmeier et al. | A degree‐distance‐based connections model with negative and positive externalities | |
| Preuveneers et al. | Policy reconciliation for access control in dynamic cross-enterprise collaborations | |
| CN109033810A (en) | A kind of Rights Management System | |
| US8141160B2 (en) | Mitigating and managing privacy risks using planning | |
| CN104714825B (en) | The method of Unified Policy configuration | |
| Markovsky et al. | Theory construction | |
| CN108304731A (en) | A kind of method, system and information processing platform that management business data calls | |
| CN115587387A (en) | Data authority management method and system based on expandable data label | |
| CN106790155B (en) | User right information generation method | |
| Siegenthaler et al. | Sharing private information across distributed databases | |
| Jiang et al. | Access control model for composite web services | |
| CN103634326B (en) | A kind of method and device for processing application system request message | |
| CN110519236A (en) | A kind of method of safe account and permission control under website cluster | |
| Moghaddam et al. | Cloud Security Distributary Set (CSDS) A Policy-Based Framework to Define Multi-Level Security Structure in Clouds | |
| CN119692961A (en) | Three-party member information matching system and method based on intelligent algorithm | |
| Milton | Quantiles |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20181218 |