CN101373527A - Human authority control method engaged with system - Google Patents
Human authority control method engaged with system Download PDFInfo
- Publication number
- CN101373527A CN101373527A CNA2007100452583A CN200710045258A CN101373527A CN 101373527 A CN101373527 A CN 101373527A CN A2007100452583 A CNA2007100452583 A CN A2007100452583A CN 200710045258 A CN200710045258 A CN 200710045258A CN 101373527 A CN101373527 A CN 101373527A
- Authority
- CN
- China
- Prior art keywords
- participant
- authority
- control method
- post
- login account
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Abstract
The invention relates to an access control method of a system participant. The method sets representation values of the following data tables in a storage device through a server: table one is used for corresponding the relationship between the system participant and information of a login account; table two is used for corresponding the relationship between the information of the login account and a position; table three is used for corresponding the relationship between the position and the type of the position; table four is used for corresponding the relationship of the type of the position and access; the server inquiries the data tables in the storage device through the login account, obtains the value of the type of the position of the system participant and obtains the corresponding access value according to the value of the type of the position; and the access content which is corresponding to the access value is displayed on a system interface. Compared with the prior art, the access control method is characterized by wide applicability, the personnel change is neglected through the position authorization, the access is given to the position, once the personnel is changed, the personnel is set for the certain position, and then the personnel can automatically inherit the complete access of the position.
Description
Technical field
The present invention relates to control of authority, particularly a kind of system participant's authority control method.
Background technology
Chinese enterprises management all has tangible distinct Chinese characteristics, and along with the popularizing and introduce external management method of information management system, very big variation has appearred in the management process of Chinese Enterprise.And right assignment is the content of core the most in the present business administration, and the design of permission system has determined the flow process of this enterprise information management system basically, just the management process of this enterprise.When Chinese Enterprise was kept on talking about BPM (Business ProcessManagement) transformation at present, the authority models that is fit to this enterprise characteristic when must must have a cover stable was again supported.Authority control method is in the past often ignored the post and is authorized, promptly authority is directly composed and given the operator, in case these personnel leave the post or relieve a sentry, then the authority that the operator gave needs deletion, a newly-built operator of while also inherits the authority in original post, has increased system complexity greatly.
Summary of the invention
Purpose of the present invention is exactly the authority control method that a kind of system participant is provided for the defective that overcomes above-mentioned prior art existence.
Purpose of the present invention can be achieved through the following technical solutions: system participant's authority control method is characterized in that this method may further comprise the steps:
A. set the performance value of following data form in memory storage by server:
Form one is used for the relation between corresponding system participant and the login account information;
Form two is used for the relation between corresponding login account information and the post;
Form three is used for the relation between corresponding post and the post type;
Form four is used for the relation between corresponding post type and the authority;
B. when the participant of system passed through the client logon enterprise management system, server obtained the participant's of this system post types value by above-mentioned each tables of data in the login account inquiry memory storage, and obtains corresponding authority credentials according to this post types value;
C. by SOA (Enterprise SOA, Service-Oriented Architecture) interface the pairing authority content of the authority credentials among the step B is presented on the system interface.
Described authority content comprises page elements, table element.
Described page elements comprises menu, button, TAB page or leaf.
Described table element comprises row, column in the data form, field value.
Described system interface is a webpage.
Compared with prior art, the present invention has the wide characteristics of relevance grade, and authorize by the post, ignored personnel's change, authority is composed to the post, in case personnel amendment, as long as these personnel are set to certain post, then inherit whole authorities in this post automatically, greatly reduce the complexity of system.
Description of drawings
Fig. 1 is the graph of a relation of the data form of embodiments of the invention.
Fig. 2 is the structural representation of hardware of the present invention.
Embodiment
The invention will be further described below in conjunction with accompanying drawing.
As shown in Figure 1 and Figure 2, present embodiment is at first set the performance value of following data form in memory storage by server:
System participant: the concrete people in the corresponding reality;
Tissue: concrete unit in the corresponding reality, department, section office are physical mappings of business organization's framework;
The login account number: the concrete login account of login system, the participant of system has zero to a plurality of operator's accounts;
The post: to different posies should be arranged, in HRP, each post all has the post explanation and the corresponding division of powers of this post correspondence to each login account number in different tissues;
The post type: the post type is to the further conclusion in post and abstract, to make things convenient for the realization of batch authorization.
Authority content is to the conclusion of concrete power limit and abstract, and main managed object has page elements such as menu in the page, button, TAB page or leaf, also can be concrete function, also can be data row, column or information point concrete in the database simultaneously.Present embodiment can control to the displaying of each information that relates to above by data base querying;
Special mandate is that some do not need to walk the mandate of normal flow to embody;
Common mandate is that the mandate of normal flow embodies;
The post mandate is the mandate at concrete post;
When the participant of system passed through the client logon enterprise management system, server obtained the participant's of this system post types value by above-mentioned each tables of data in the login account inquiry memory storage, and obtains corresponding authority credentials according to this post types value; And the pairing authority content of authority credentials is presented on the webpage by the SOA interface.
The hardware configuration of present embodiment comprises client computer 1, server 2, memory storage 3, and client computer 1, server 2, memory storage 3 are set up network by communication apparatus and connected.
Claims (5)
1. the participant's of system authority control method is characterized in that, this method may further comprise the steps:
A. set the performance value of following data form in memory storage by server:
Form one is used for the relation between corresponding system participant and the login account information;
Form two is used for the relation between corresponding login account information and the post;
Form three is used for the relation between corresponding post and the post type;
Form four is used for the relation between corresponding post type and the authority;
B. when the participant of system passed through the client logon enterprise management system, server obtained the participant's of this system post types value by above-mentioned each tables of data in the login account inquiry memory storage, and obtains corresponding authority credentials according to this post types value;
C. by the SOA interface the pairing authority content of the authority credentials among the step B is presented on the system interface.
2. system participant's according to claim 1 authority control method is characterized in that, described authority content comprises page elements, table element.
3. system participant's according to claim 2 authority control method is characterized in that, described page elements comprises menu, button, TAB page or leaf.
4. system participant's according to claim 2 authority control method is characterized in that, described table element comprises row, column in the data form, field value.
5. system participant's according to claim 1 authority control method is characterized in that, described system interface is a webpage.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2007100452583A CN101373527A (en) | 2007-08-24 | 2007-08-24 | Human authority control method engaged with system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2007100452583A CN101373527A (en) | 2007-08-24 | 2007-08-24 | Human authority control method engaged with system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN101373527A true CN101373527A (en) | 2009-02-25 |
Family
ID=40447681
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2007100452583A Pending CN101373527A (en) | 2007-08-24 | 2007-08-24 | Human authority control method engaged with system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN101373527A (en) |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102708436A (en) * | 2012-04-18 | 2012-10-03 | 苏州万戈软件科技有限公司 | Enterprise position service system |
| CN103500297A (en) * | 2013-10-11 | 2014-01-08 | 济钢集团有限公司 | Fine grit authority management method in information system |
| CN103745282A (en) * | 2012-10-17 | 2014-04-23 | 镇江雅迅软件有限责任公司 | Authority management method based on post abstraction |
| CN104881506A (en) * | 2015-06-29 | 2015-09-02 | 山东钢铁股份有限公司 | Configurable management information system right control method based on database |
| CN105245436A (en) * | 2015-09-30 | 2016-01-13 | 阿里巴巴集团控股有限公司 | Position-based data management method and device |
| CN106407757A (en) * | 2015-08-10 | 2017-02-15 | 阿里巴巴集团控股有限公司 | Access right processing method, apparatus and system for database |
| CN106559381A (en) * | 2015-09-25 | 2017-04-05 | 李书贤 | Intelligent organization management system and its authentication authority method |
| CN107103228A (en) * | 2017-04-22 | 2017-08-29 | 成都牵牛草信息技术有限公司 | Man-to-man permission grant method and system of the based role to user |
| CN108876313A (en) * | 2017-07-24 | 2018-11-23 | 成都牵牛草信息技术有限公司 | Setting method of the user in the permission of information interchange unit in system |
| CN108959628A (en) * | 2017-07-24 | 2018-12-07 | 成都牵牛草信息技术有限公司 | Forum's management method |
| WO2018224023A1 (en) * | 2017-06-08 | 2018-12-13 | 成都牵牛草信息技术有限公司 | Method for displaying permission after employee logs into account thereof in system |
| CN109086418A (en) * | 2017-08-07 | 2018-12-25 | 成都牵牛草信息技术有限公司 | The method that statistics list operation permission is authorized respectively based on train value |
| WO2019011162A1 (en) * | 2017-07-09 | 2019-01-17 | 成都牵牛草信息技术有限公司 | Shortcut function setting method |
| CN111104651A (en) * | 2018-10-29 | 2020-05-05 | 中国移动通信集团云南有限公司 | Method and device for inter-access among different application systems of multi-post user |
| CN113177070A (en) * | 2021-05-17 | 2021-07-27 | 中移智行网络科技有限公司 | Information query method, device and related equipment |
-
2007
- 2007-08-24 CN CNA2007100452583A patent/CN101373527A/en active Pending
Cited By (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102708436A (en) * | 2012-04-18 | 2012-10-03 | 苏州万戈软件科技有限公司 | Enterprise position service system |
| CN103745282A (en) * | 2012-10-17 | 2014-04-23 | 镇江雅迅软件有限责任公司 | Authority management method based on post abstraction |
| CN103500297A (en) * | 2013-10-11 | 2014-01-08 | 济钢集团有限公司 | Fine grit authority management method in information system |
| CN104881506A (en) * | 2015-06-29 | 2015-09-02 | 山东钢铁股份有限公司 | Configurable management information system right control method based on database |
| CN106407757A (en) * | 2015-08-10 | 2017-02-15 | 阿里巴巴集团控股有限公司 | Access right processing method, apparatus and system for database |
| CN106559381A (en) * | 2015-09-25 | 2017-04-05 | 李书贤 | Intelligent organization management system and its authentication authority method |
| CN105245436A (en) * | 2015-09-30 | 2016-01-13 | 阿里巴巴集团控股有限公司 | Position-based data management method and device |
| CN107103228A (en) * | 2017-04-22 | 2017-08-29 | 成都牵牛草信息技术有限公司 | Man-to-man permission grant method and system of the based role to user |
| WO2018224023A1 (en) * | 2017-06-08 | 2018-12-13 | 成都牵牛草信息技术有限公司 | Method for displaying permission after employee logs into account thereof in system |
| WO2019011162A1 (en) * | 2017-07-09 | 2019-01-17 | 成都牵牛草信息技术有限公司 | Shortcut function setting method |
| CN108959628A (en) * | 2017-07-24 | 2018-12-07 | 成都牵牛草信息技术有限公司 | Forum's management method |
| CN108876313A (en) * | 2017-07-24 | 2018-11-23 | 成都牵牛草信息技术有限公司 | Setting method of the user in the permission of information interchange unit in system |
| EP3660709A4 (en) * | 2017-07-24 | 2021-06-09 | Chengdu Qianniucao Information Technology Co., Ltd | Method for setting permission of user in information exchange unit in system |
| CN109086418A (en) * | 2017-08-07 | 2018-12-25 | 成都牵牛草信息技术有限公司 | The method that statistics list operation permission is authorized respectively based on train value |
| CN111104651A (en) * | 2018-10-29 | 2020-05-05 | 中国移动通信集团云南有限公司 | Method and device for inter-access among different application systems of multi-post user |
| CN113177070A (en) * | 2021-05-17 | 2021-07-27 | 中移智行网络科技有限公司 | Information query method, device and related equipment |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN101373527A (en) | Human authority control method engaged with system | |
| CN108337260B (en) | Multi-tenant identity and data security management cloud service | |
| US9003297B2 (en) | Integrated enterprise software and social network system user interfaces utilizing cloud computing infrastructures and single secure portal access | |
| US10430430B2 (en) | Computer relational database method and system having role based access control | |
| US8682698B2 (en) | System and method for secure self registration with an insurance portal | |
| CN109815284A (en) | A kind of method and apparatus of data processing | |
| CN106411857B (en) | A kind of private clound GIS service access control method based on virtual isolation mech isolation test | |
| EP2706700A1 (en) | Computer account management system and implementation method thereof | |
| CN110457891B (en) | Permission configuration interface display method, device, terminal and storage medium | |
| US20130218911A1 (en) | Systems and methods for enforcement of security profiles in multi-tenant database | |
| US20130110957A1 (en) | Segmenting access to electronic message boards | |
| CN110443010A (en) | One kind permission visual configuration control method, device, terminal and storage medium in information system | |
| JP5925373B1 (en) | Communication support system | |
| CN107292526A (en) | Engineering corporation information management system | |
| US20140164249A1 (en) | Method and system for secure authentication and information sharing and analysis | |
| CN107070894A (en) | A kind of software integrating method based on enterprise's cloud service platform | |
| CN112910904B (en) | Login method and device of multi-service system | |
| CN201111137Y (en) | Post authoring apparatus | |
| CN109740372A (en) | Based on the system and method for realizing that conceptual schematic drawing paper is divided in automatic audit room on WEB | |
| CN106790187A (en) | System integration method based on total score framework | |
| US20200387838A1 (en) | Database management and system integration for event booth mapping | |
| US11256661B1 (en) | User programmatic interface for supporting data access control in a database system | |
| DE102018124707A1 (en) | System, system control method, voice operation device, voice operation device control method and program | |
| CN111949973A (en) | Identity recognition and access management system and method | |
| CN107729097A (en) | Displayed page collocation method and relevant device |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C02 | Deemed withdrawal of patent application after publication (patent law 2001) | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Open date: 20090225 |