CN106055988B - For the authority control method and device of control - Google Patents

For the authority control method and device of control Download PDF

Info

Publication number
CN106055988B
CN106055988B CN201610354063.6A CN201610354063A CN106055988B CN 106055988 B CN106055988 B CN 106055988B CN 201610354063 A CN201610354063 A CN 201610354063A CN 106055988 B CN106055988 B CN 106055988B
Authority
CN
China
Prior art keywords
control
permission
initialization
authority information
application program
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Active
Application number
CN201610354063.6A
Other languages
Chinese (zh)
Other versions
CN106055988A (en
Inventor
潘俊
向云龙
杨成
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Netposa Technologies Ltd
Original Assignee
Netposa Technologies Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Netposa Technologies Ltd filed Critical Netposa Technologies Ltd
Priority to CN201610354063.6A priority Critical patent/CN106055988B/en
Publication of CN106055988A publication Critical patent/CN106055988A/en
Application granted granted Critical
Publication of CN106055988B publication Critical patent/CN106055988B/en
Active legal-status Critical Current
Anticipated expiration legal-status Critical

Links

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/604Tools and structures for managing or administering access control systems
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/602Providing cryptographic facilities or services

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • Computer Security & Cryptography (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Health & Medical Sciences (AREA)
  • Software Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Automation & Control Theory (AREA)
  • Storage Device Security (AREA)

Abstract

The embodiment of the invention provides a kind of authority control methods and device for control, and wherein method includes: to obtain the control authority information currently defined by control rights management platform;Wherein, control authority information includes the mark of control and the permission of control;Monitor the operating condition of application program;Wherein, application program is corresponding with control rights management platform;When listening to application program, there are the controls for when control initialization, judging initialization whether to carry out permission control;If the control of initialization did not carry out permission control, permission control is carried out according to control of the control authority information to initialization.The authority control method and device for control in through the embodiment of the present invention, when needing to modify the permission of some control, it is only necessary to modify control authority information, it is not necessary to modify the corresponding codes of the control, without the code of modification application program, workload is small, control maintenance activities are high.

Description

For the authority control method and device of control
Technical field
The present invention relates to control rights management field, in particular to a kind of authority control method for control and Device.
Background technique
For software product, it usually needs permission control is carried out to control therein, for example, the product page that control is different Different controls is loaded, or loads different controls for different users.By taking chat software QQ as an example, when user double-clicks certain When the head portrait of position good friend, application program needs to load the chat window between user and the good friend, including video control, information hair Control, file Transport Controls and close control etc. are sent, when user opens the personal information of the good friend, application program is needed Load the corresponding data control of the good friend, photograph album control, dynamic controlware, cohesion control and label control etc..For QQ's For member user, member's growth control is shown in the personal information page of user and is used for the non-member user of QQ Member's growth control is not shown in the personal information page at family.
Currently, mainly using the permission of following methods control control: control program corresponding with application program is write, it should Control program includes the authority information for the control write in the form of code, which is stored in the form of configuration file. In application program operational process, configuration file is read, permission control is carried out to control according to the code read.
By above-mentioned control authority control method, when needing to modify the permission of some control, need to modify the control pair The code answered, and the code of application program is modified, there is heavy workload, the problem of control maintenance activities difference.
Summary of the invention
In view of this, the embodiment of the present invention is designed to provide a kind of authority control method and device for control, When needing to modify the permission of some control, it is only necessary to modify control authority information, it is not necessary to modify the control corresponding generations Code, without the code of modification application program, workload is small, control maintenance activities are high.
In a first aspect, the embodiment of the invention provides a kind of authority control methods for control, which comprises logical It crosses control rights management platform and obtains the control authority information currently defined;Wherein, the control authority information includes control The permission of mark and the control;Monitor the operating condition of application program;Wherein, the application program and the control permission pipe Platform is corresponding;When listen to the application program there are when control initialization, judge the initialization control whether into Permission of going control;If the control of the initialization did not carry out permission control, according to the control authority information to institute The control for stating initialization carries out permission control.
With reference to first aspect, the first possible embodiment the embodiment of the invention provides first aspect, wherein monitor The operating condition of application program, comprising: setting hook event corresponding with application program;When the hook event is triggered When, determining the application program, there are control initialization.
With reference to first aspect, the embodiment of the invention provides second of first aspect possible embodiments, wherein judgement Whether the control of the initialization carried out permission control, comprising: searches in pre-stored permission control record described first The mark of the control of beginningization;When not finding the mark of control of the initialization, determine that the control of the initialization does not have Carried out permission control.
With reference to first aspect, the third possible embodiment the embodiment of the invention provides first aspect, wherein according to The control authority information carries out permission control to the control of the initialization, comprising: the basis in the control authority information The permission of the control of initialization described in the identifier lookup of the control of the initialization;According to the control of the initialization found Permission permission control is carried out to the control of the initialization;Wherein, the permission of the control of the initialization includes in following Any one: showing and can be used, show and it is unavailable, hiding and occupy memory space, hide and be not take up memory space.
Above-mentioned embodiment with reference to first aspect, the embodiment of the invention provides the 4th kind of possible implementations of first aspect Mode, wherein before carrying out permission control according to control of the control authority information to the initialization, the method is also It include: to be encrypted to the control authority information, using the encrypted control authority information as final control permission Information;Permission control is carried out according to control of the control authority information to the initialization, comprising: is believed the control permission Breath is decrypted, and carries out permission control according to control of the control authority information after decryption to the initialization.
Second aspect, the embodiment of the invention provides a kind of permission control device for control, described device includes: to obtain Modulus block, for obtaining the control authority information currently defined by control rights management platform;Wherein, the control permission letter Breath includes the mark of control and the permission of the control;Module is monitored, for monitoring the operating condition of application program;Wherein, institute It is corresponding with the control rights management platform to state application program;Judgment module listens to the application program presence for working as When control initializes, judge whether the control of the initialization carried out permission control;Permission control module, if for described first The control of beginningization did not carry out permission control, then carried out permission according to control of the control authority information to the initialization Control.
In conjunction with second aspect, the first possible embodiment the embodiment of the invention provides second aspect, wherein described Monitoring module includes: setting unit, for hook event corresponding with application program to be arranged;Determination unit, for when described When hook event is triggered, determining the application program, there are control initialization.
In conjunction with second aspect, the embodiment of the invention provides second of second aspect possible embodiments, wherein described Judgment module includes: identifier lookup unit, for searching the control of the initialization in pre-stored permission control record Mark;Determination unit is controlled, for determining the control of the initialization when not finding the mark of control of the initialization Part did not carry out permission control.
In conjunction with second aspect, the third possible embodiment the embodiment of the invention provides second aspect, wherein described Permission control module includes: permission searching unit, in the control authority information according to the control of the initialization The permission of the control of initialization described in identifier lookup;Permission control unit, for the control according to the initialization found Permission permission control is carried out to the control of the initialization;Wherein, the permission of the control of the initialization includes in following Any one: showing and can be used, show and it is unavailable, hiding and occupy memory space, hide and be not take up memory space.
In conjunction with the above-mentioned embodiment of second aspect, the embodiment of the invention provides the 4th kind of possible implementations of second aspect Mode, wherein described device further include: encrypting module, for being encrypted to the control authority information, by encrypted institute Control authority information is stated as final control authority information;The permission control module is also used to: being believed the control permission Breath is decrypted, and carries out permission control according to control of the control authority information after decryption to the initialization.
In the embodiment of the present invention, the control authority information currently defined is obtained first, then when control initializes, according to The control authority information of acquisition carries out permission control to control.It is understood that the control authority information currently defined, both includes original Control authority information is sky, is not also empty, the feelings currently modified including former control authority information the case where currently redefining Condition, also, to control carry out permission control process be the process executed automatically, therefore through this embodiment in method and dress It sets, when needing to modify the permission of some control, it is only necessary to modify control authority information, it is not necessary to modify the control is corresponding Code, without the code of modification application program, it will be able to permission control be carried out to control again, workload is small, control is safeguarded Flexibility is high.
To enable the above objects, features and advantages of the present invention to be clearer and more comprehensible, preferred embodiment is cited below particularly, and cooperate Appended attached drawing, is described in detail below.
Detailed description of the invention
In order to illustrate the technical solution of the embodiments of the present invention more clearly, below will be to needed in the embodiment attached Figure is briefly described, it should be understood that the following drawings illustrates only certain embodiments of the present invention, therefore is not construed as pair The restriction of range for those of ordinary skill in the art without creative efforts, can also be according to this A little attached drawings obtain other relevant attached drawings.
Fig. 1 is shown provided by the embodiment of the present invention for a kind of flow diagram of the authority control method of control;
Fig. 2 shows a kind of schematic diagrames of the input interface of control rights management platform provided by the embodiment of the present invention;
Fig. 3 shows another process signal provided by the embodiment of the present invention for the authority control method of control Figure;
Fig. 4 shows a kind of structural schematic diagram for the permission control device that the embodiment of the present invention is provided for control;
Fig. 5 shows another structural schematic diagram for the permission control device that the embodiment of the present invention is provided for control.
Specific embodiment
In order to make the object, technical scheme and advantages of the embodiment of the invention clearer, below in conjunction with the embodiment of the present invention Middle attached drawing, technical scheme in the embodiment of the invention is clearly and completely described, it is clear that described embodiment is only It is a part of the embodiment of the present invention, instead of all the embodiments.The present invention being usually described and illustrated herein in the accompanying drawings is real The component for applying example can be arranged and be designed with a variety of different configurations.Therefore, of the invention to what is provided in the accompanying drawings below The detailed description of embodiment is not intended to limit the range of claimed invention, but is merely representative of selected reality of the invention Apply example.Based on the embodiment of the present invention, those skilled in the art institute obtained without making creative work There are other embodiments, shall fall within the protection scope of the present invention.
In view of when needing to modify the permission of some control, needing by control authority control method in the related technology The corresponding code of the control is modified, and modifies the code of application program, has heavy workload, control maintenance activities are poor to ask Topic is based on this, the embodiment of the invention provides a kind of authority control method and device for control, below by embodiment into Row is described in detail.
Fig. 1 shows a kind of flow diagram of the authority control method provided in an embodiment of the present invention for control.Such as Shown in Fig. 1, the authority control method for control in the embodiment of the present invention is mainly comprised the steps that
Step S102 obtains the control authority information currently defined by control rights management platform;Wherein, control permission Information includes the mark of control and the permission of control.
Wherein, the present embodiment can obtain the control currently defined by the control rights management platform installed on terminal device Part authority information, the control rights management platform can be an application program on terminal device, be capable of providing and open to control Hair personnel's input interface, control developer is after the control authority information that input interface input currently defines, the control permission Manage the information that platform obtains control developer input.Terminal device includes computer, tablet computer and smart phone etc.. It is understood that control developer define control authority information process be exactly control authority information configuration process.
Fig. 2 shows a kind of schematic diagrames of the input interface of control rights management platform.In Fig. 2, left side is control permission Configuration file node, indicates the corresponding configuration file of each control, and upper right side is the attribute information of current engineering, including current work The mark and title of journey, lower right side be specific control authority configuration item content, the control authority information including multiple controls, such as The mark (unique identification i.e. in figure) of multiple controls and permission (the enabled mode option and disabling mould in such as figure of multiple controls Formula option).
The attribute information of current engineering in Fig. 2 is described as follows: unique identification: the mark of current engineering has uniqueness; Title: the title of current engineering.Control authority configuration item description of contents in Fig. 2 is as follows: unique identification: the mark of current control Know, there is uniqueness;Parent mark: the mark of the parent control of current control has uniqueness, then indicates current control for sky For top control;Title: the title of current control;Text prompt: the suggestion content of current control;NameSpace: current control The NameSpace at place, for distinguishing control of the same name;Enabled mode: visible-- shows that enabled-- is available, null- It empties;Disabling mode: collapsed--, which hides, does not account for concealed space, and hidden--, which hides, occupies concealed space, disabled-- Disabling, null-are emptied;Enable application configuration: for generating the relational structure between multiple control authority informations;Reserved extension: It is extended for the later period.Wherein, the permission of control is controlled in such a way that enabled mode and the corresponding option of disabling mode combine.
For being identified as 002 control in Fig. 2, the title of the control is that vehicle is deployed to ensure effective monitoring and control of illegal activities.The configuration file of the control is " the 4th file ", the authority information of the control is stored in the configuration file, which is stored in the storage of terminal device In space, the subsequent permission control transferred the configuration file and carry out the control.The NameSpace of the control is " the first space ".When The permission of the control is that " enabled " option is selected in enabled mode when showing and is available, selection " null " choosing in disabling mode , when the permission of the control is display but is unavailable, " visible " option is selected in enabled mode, is selected in disabling mode " disabled " option selects " null " option in enabled mode, prohibits when the permission of the control is to hide not account for concealed space With " collapsed " option is selected in mode, when the permission of the control is to hide but account for concealed space, selected in enabled mode " null " option selects " hidden " option in disabling mode.
For the security consideration of information, the configuration file of each control can be encrypted in the present embodiment, preferably Using Base64+MD5 Encryption Algorithm.
By step S102, the control authority information that developer defines can be obtained, is weighed in order to subsequent according to control Limit information carries out permission control.By control rights management platform, control authority information can be made to embody in the form of document, controlled Part authority information is neatly clear, facilitates developer to define control permission by visualized operation.
Step S104 monitors the operating condition of application program.Wherein, application program is opposite with control rights management platform It answers.
In the present embodiment, the operating condition of application program is preferably monitored in the following manner: (1) setting and application program phase Corresponding hook event;(2) when the hook event is triggered, determining application program, there are control initialization.
Wherein, application program refers to the control program subjected that above-mentioned control rights management platform is managed.This reality It applies in example, when control in the application initializes, the control authority information obtained according to control rights management platform is to first The control of beginningization carries out permission control.
Hook Technique is a kind of a kind of skill for intercepting and capturing the message of certain application program or all processes in windows system Art.It refers specifically to monitor the load of control in real time to define the front and back of control load and receiving event in the present embodiment, and in event Inside is completed to control by control.
(1) and process (2) by the above process can be monitored the operating condition of application program using Hook Technique, known There are control initialization, to carry out permission control to control.
Step S106, when listening to application program, whether there are the controls for when control initialization, judging initialization to carry out Permission control.
In the present embodiment, listen to there are when control initialization, first determine whether the control whether carried out permission control, If carried out, the control is skipped, continues to monitor, if do not carried out, permission is carried out to the permission of the control Control.
In this step, judges whether the control of initialization carried out permission control by following procedure: (a) being stored in advance Permission control record in search initialization control mark;(b) when not finding the mark of control of the initialization, really The control of the fixed initialization did not carry out permission control.
In the present embodiment, the control controlled for carrying out permission will all cache the mark of the control using caching technology, Form permission control record.That is, permission control record includes the mark for carrying out each control of permission control, may be used also To include permission control time and the concrete power limit information for carrying out each control of permission control.The above process (a) and (b) In, the mark of the control of initialization is searched in pre-stored permission control record, if not finding, illustrates that this is initial The control of change did not carry out permission control, if finding, illustrated that the control of the initialization carried out permission control.
In the present embodiment, the mark for having carried out the control of permission control is cached, forms permission control record, and Judge whether certain control carried out permission control according to permission control record, can be improved the permission control efficiency of control, avoid Permission control is repeated to same control.
Step S108, if the control of initialization did not carry out permission control, according to control authority information to initialization Control carry out permission control.
Specifically, step S108 is specifically executed are as follows: (1) mark of the control in control authority information according to initialization is looked into Look for the permission of the control of the initialization;(2) control of initialization is weighed according to the permission of the control of the initialization found Limit control;Wherein, the permission of the control of initialization includes any one in following: showing and can be used, shows and is unavailable, hidden Memory space is hidden and occupied, hides and is not take up memory space.
For example, to Mr. Yu's control, when in control authority information according to the permission of the identifier lookup of the control to the control It is when showing and is available, then is display and available form by the permission control of the control.
In a kind of preferred embodiment, additionally it is possible in the title of input interface change control as shown in Figure 2, and according to more Title after changing carries out title control to control, and title control also belongs to one kind of permission control.
In the embodiment of the present invention, the control authority information currently defined is obtained first, then when control initializes, according to The control authority information of acquisition carries out permission control to control.It is understood that the control authority information currently defined, both includes original Control authority information is sky, is not also empty, the feelings currently modified including former control authority information the case where currently redefining Condition, also, to control carry out permission control process be the process executed automatically, therefore through this embodiment in method, when When needing to modify the permission of some control, it is only necessary to control authority information is modified, it is not necessary to modify the corresponding code of the control, Without the code of modification application program, it will be able to carry out permission control to control again, workload is small, control maintenance activities It is high.
It should be noted that control developer only needs to define control authority information in the present embodiment, sheet is executed The system of method in embodiment carries out permission control to control automatically according to control authority information.Specifically, when control is developed After personnel define control authority information, the system for executing the method in the present embodiment is raw automatically according to the control authority information of definition Permission control is carried out to control at corresponding code, and according to the code.Therefore in the present embodiment, for developer, It only needs to define control authority information, does not need concern control code section, the system for executing the method in the present embodiment Corresponding code is modified automatically according to the control authority information that developer defines, and control power is controlled according to corresponding code Limit.
In view of the safety of control authority information, in step S108, according to control authority information to the control of initialization Before carrying out permission control, as shown in figure 3, the method in the present embodiment further include:
Step S302 encrypts control authority information, using encrypted control authority information as final control Authority information.It is preferred that using Base64+MD5 algorithm for encryption.
Accordingly, in Fig. 3, step S108 carries out permission control according to control of the control authority information to initialization, specifically It executes are as follows: control authority information is decrypted, permission is carried out according to control of the control authority information after decryption to initialization Control.
Step S302 is executed before step S108, as shown in figure 3, it is preferred that executing after step s 102.By to control Part authority information is encrypted, and can guarantee the safety of control authority information, prevents from accidentally being used by other processes or program.
In addition, being not limited to encrypt control authority information in the embodiment of the present invention, moreover it is possible to cross through database or Other modes storage control authority information.
Method in the present embodiment can be accomplished by the following way in actual implementation.
Setting control rights management platform obtains the control authority information currently defined by control rights management platform, Control authority information is encrypted, control competence profile is generated.Setting control permission safeguards component, software systems foundation Control permission maintenance component is introduced software systems by the mode of computer language charging assembly, and control permission safeguards that component provides It is loaded into the operation of control competence profile, enables, disabling, generate the open interfaces such as authority items.Software systems are enabled by calling Interface, component internal rely on Hook Technique, caching technology and the maintenance regulation of definition, complete the display of control, hide, display The maintenance works such as title content and prompt.
Specifically, control permission maintenance component includes bottom resolution component and upper layer application component, and bottom resolution component is used In control competence profile is decrypted and is parsed, the system language that upper layer application component can identify is generated.It answers on upper layer It is responsible for monitoring the control of application program with component, it is right according to the control competence profile that bottom resolution component is transmitted The permission of the control listened to is controlled.Upper layer application component also caches the mark of the control controlled, forms power Limit control record, so that screening the control that no permission controlled carries out permission control.
The embodiment of the present invention, which is equivalent to, introduces third party's management plug-in unit, does not interfere the coding and logic of application program itself, Applicability is extensive;Flexibly loading, disassembly and control rapidly is realized, without coding-control and frequent released version, to mitigate volume The workload of code reduces edition upgrading cost;Demand to disparity items carries out the control of control differentiation, it can be achieved that same software Version copes with different projects, preferably accomplishes software product;Authority items can be automatically generated, can control different in same project The permission of user or role.
It has been shown that, hiding, display Name content and the prompt of control can be controlled for greater flexibility through the embodiment of the present invention, with Disparity items is adapted to the adjustment demand of a certain control, achievees the purpose that same software reply disparity items demand, preferably does To software product, maintenance cost is reduced.
The embodiment of the present invention is also equipped with following advantages: (1) being detached from application program itself, realize that control is associated with permission;(2) Authority items can be quickly generated by control rights management platform, to control control;(3) using Hook Technique to control It is monitored, using caching technology, improves the efficiency of monitoring;(4) visualized operation, control are carried out by control rights management platform Part authority information is very clear;(5) developer's work is reduced without by Code Maintainability with document configuration control routine.
Method in the embodiment of the present invention can be realized by any programming language, such as C#, Java, C, C++, from And it is applied to the control under various environment, it realizes and the control permission of various application programs is controlled.
Corresponding with above-mentioned method, the embodiment of the invention also provides a kind of permission control device for control, such as Fig. 4 Shown, which includes:
Module 41 is obtained, for obtaining the control authority information currently defined by control rights management platform;Wherein, it controls Part authority information includes the mark of control and the permission of control;
Module 42 is monitored, for monitoring the operating condition of application program;Wherein, application program and control rights management platform It is corresponding;
Judgment module 43, for when listen to application program there are when control initialization, judge initialization control whether Carried out permission control;
Permission control module 44 is believed if the control for initialization did not carry out permission control according to control permission It ceases and permission control is carried out to the control of initialization.
By obtaining module 41, the control authority information that developer defines can be obtained, in order to subsequent according to control Authority information carries out permission control.By control rights management platform, control authority information can be made to embody in the form of document, Control authority information is neatly clear, facilitates developer to define control permission by visualized operation.
Wherein, monitoring module 42 includes: setting unit, for hook event corresponding with application program to be arranged;It determines Unit, for when hook event is triggered, determining application program, there are control initialization.
By above-mentioned setting unit and determination unit, the operating condition of application program can be monitored using Hook Technique, is obtained Know that there are control initialization, to carry out permission control to control.
Wherein, judgment module 43 includes: identifier lookup unit, for searching just in pre-stored permission control record The mark of the control of beginningization;Determination unit is controlled, for determining initialization when not finding the mark of control of initialization Control did not carry out permission control.
In the present embodiment, the mark for having carried out the control of permission control is cached, forms permission control record, and Judge whether certain control carried out permission and control according to permission control record, can be improved control permission control efficiency, avoid pair Identical control repeats permission control.
Wherein, permission control module 44 includes: permission searching unit, in control authority information according to initialization The permission of the control of the identifier lookup initialization of control;Permission control unit, for according to the control of initialization found Permission carries out permission control to the control of initialization;Wherein, the permission of the control of initialization includes any one in following: aobvious Show and can be used, show and it is unavailable, hiding and occupy memory space, hide and be not take up memory space.
In the embodiment of the present invention, the control authority information currently defined is obtained first, then when control initializes, according to The control authority information of acquisition carries out permission control to control.It is understood that the control authority information currently defined, both includes original Control authority information is sky, is not also empty, the feelings currently modified including former control authority information the case where currently redefining Condition, also, to control carry out permission control process be the process executed automatically, therefore through this embodiment in device, when When needing to modify the permission of some control, it is only necessary to control authority information is modified, it is not necessary to modify the corresponding code of the control, Without the code of modification application program, it will be able to carry out permission control to control again, workload is small, control maintenance activities It is high.
In view of the safety of control authority information, as shown in figure 5, the device in the present embodiment further include: encrypting module 51, for being encrypted to control authority information, using encrypted control authority information as final control authority information;It is right Ying Di, permission control module 44 are also used to: control authority information being decrypted, according to the control authority information after decryption to first The control of beginningization carries out permission control.
By encrypting to control authority information, can guarantee the safety of control authority information, prevent by other into Journey or program accidentally use.
Provided by the embodiment of the present invention for the permission control device of control can in equipment specific hardware or Software or firmware for being installed in equipment etc..The technology of device provided by the embodiment of the present invention, realization principle and generation is imitated Fruit is identical with preceding method embodiment, and to briefly describe, Installation practice part does not refer to place, can refer to preceding method implementation Corresponding contents in example.It is apparent to those skilled in the art that for convenience and simplicity of description, foregoing description The specific work process of system, device and unit, the corresponding process during reference can be made to the above method embodiment, it is no longer superfluous herein It states.
In embodiment provided by the present invention, it should be understood that disclosed device and method, it can be by others side Formula is realized.The apparatus embodiments described above are merely exemplary, for example, the division of the unit, only one kind are patrolled Function division is collected, there may be another division manner in actual implementation, in another example, multiple units or components can combine or can To be integrated into another system, or some features can be ignored or not executed.Another point, shown or discussed is mutual Coupling, direct-coupling or communication connection can be INDIRECT COUPLING or communication link by some communication interfaces, device or unit It connects, can be electrical property, mechanical or other forms.
The unit as illustrated by the separation member may or may not be physically separated, aobvious as unit The component shown may or may not be physical unit, it can and it is in one place, or may be distributed over multiple In network unit.It can select some or all of unit therein according to the actual needs to realize the mesh of this embodiment scheme 's.
In addition, each functional unit in embodiment provided by the invention can integrate in one processing unit, it can also To be that each unit physically exists alone, can also be integrated in one unit with two or more units.
It, can be with if the function is realized in the form of SFU software functional unit and when sold or used as an independent product It is stored in a computer readable storage medium.Based on this understanding, technical solution of the present invention is substantially in other words The part of the part or the technical solutions that contribute to the relevant technologies can be embodied in the form of software products, the meter Calculation machine software product is stored in a storage medium, including some instructions are used so that a computer equipment (can be a People's computer, server or network equipment etc.) it performs all or part of the steps of the method described in the various embodiments of the present invention. And storage medium above-mentioned includes: that USB flash disk, mobile hard disk, read-only memory (ROM, Read-Only Memory), arbitrary access are deposited The various media that can store program code such as reservoir (RAM, Random Access Memory), magnetic or disk.
It should also be noted that similar label and letter indicate similar terms in following attached drawing, therefore, once a certain Xiang Yi It is defined in a attached drawing, does not then need that it is further defined and explained in subsequent attached drawing, in addition, term " the One ", " second ", " third " etc. are only used for distinguishing description, are not understood to indicate or imply relative importance.
Finally, it should be noted that embodiment described above, only a specific embodiment of the invention, to illustrate the present invention Technical solution, rather than its limitations, scope of protection of the present invention is not limited thereto, although with reference to the foregoing embodiments to this hair It is bright to be described in detail, those skilled in the art should understand that: anyone skilled in the art In the technical scope disclosed by the present invention, it can still modify to technical solution documented by previous embodiment or can be light It is readily conceivable that variation or equivalent replacement of some of the technical features;And these modifications, variation or replacement, do not make The essence of corresponding technical solution is detached from the spirit and scope of technical solution of the embodiment of the present invention.Should all it cover in protection of the invention Within the scope of.Therefore, the protection scope of the present invention shall be subject to the protection scope of the claims.

Claims (8)

1. a kind of authority control method for control, which is characterized in that the described method includes:
The control authority information currently defined is obtained by control rights management platform;Wherein, the control authority information includes The mark of control and the permission of the control;
Monitor the operating condition of application program;Wherein, the application program is corresponding with the control rights management platform;
When listening to the application program, there are the controls for when control initialization, judging the initialization whether to carry out permission control System;
If the control of the initialization did not carry out permission control, according to the initialization in the control authority information Control identifier lookup described in initialization control permission;
Permission control is carried out according to control of the permission of the control of the initialization found to the initialization;Wherein, institute The permission for stating the control of initialization includes any one in following: showing and can be used, shows and is unavailable, hiding and occupy and deposit Storage space hides and is not take up memory space.
2. the method according to claim 1, wherein monitoring the operating condition of application program, comprising:
Hook event corresponding with application program is set;
When the hook event is triggered, determining the application program, there are control initialization.
3. the method according to claim 1, wherein judging whether the control of the initialization carried out permission control System, comprising:
The mark of the control of the initialization is searched in pre-stored permission control record;
When not finding the mark of control of the initialization, determine that the control of the initialization did not carry out permission control System.
4. method according to any one of claims 1 to 3, which is characterized in that according to the control authority information to institute Before the control progress permission control for stating initialization, the method also includes:
The control authority information is encrypted, is believed the encrypted control authority information as final control permission Breath;
Permission control is carried out according to control of the control authority information to the initialization, comprising:
The control authority information is decrypted, is carried out according to control of the control authority information after decryption to the initialization Permission control.
5. a kind of permission control device for control, which is characterized in that described device includes:
Module is obtained, for obtaining the control authority information currently defined by control rights management platform;Wherein, the control Authority information includes the mark of control and the permission of the control;
Module is monitored, for monitoring the operating condition of application program;Wherein, the application program and the control rights management are flat Platform is corresponding;
Judgment module, for there are when control initialization, judge that the control of the initialization is when listening to the application program It is no to carry out permission control;
Permission control module is believed if the control for the initialization did not carry out permission control in the control permission The permission of the control of the initialization according to the identifier lookup of the control of the initialization in breath;It is described initial according to what is found The permission of the control of change carries out permission control to the control of the initialization;Wherein, the permission of the control of the initialization includes Any one in below: showing and can be used, show and unavailable, hiding and occupy memory space, hide and be not take up storage Space.
6. device according to claim 5, which is characterized in that the monitoring module includes:
Setting unit, for hook event corresponding with application program to be arranged;
Determination unit, for when the hook event is triggered, determining the application program, there are control initialization.
7. device according to claim 5, which is characterized in that the judgment module includes:
Identifier lookup unit, the mark of the control for searching the initialization in pre-stored permission control record;
Determination unit is controlled, for determining the control of the initialization when not finding the mark of control of the initialization Permission control was not carried out.
8. according to the described in any item devices of claim 5 to 7, which is characterized in that described device further include:
Encrypting module, for being encrypted to the control authority information, using the encrypted control authority information as most Whole control authority information;
The permission control module is also used to: being decrypted to the control authority information, is believed according to the control permission after decryption It ceases and permission control is carried out to the control of the initialization.
CN201610354063.6A 2016-05-25 2016-05-25 For the authority control method and device of control Active CN106055988B (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201610354063.6A CN106055988B (en) 2016-05-25 2016-05-25 For the authority control method and device of control

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201610354063.6A CN106055988B (en) 2016-05-25 2016-05-25 For the authority control method and device of control

Publications (2)

Publication Number Publication Date
CN106055988A CN106055988A (en) 2016-10-26
CN106055988B true CN106055988B (en) 2019-01-22

Family

ID=57175849

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201610354063.6A Active CN106055988B (en) 2016-05-25 2016-05-25 For the authority control method and device of control

Country Status (1)

Country Link
CN (1) CN106055988B (en)

Families Citing this family (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107704546A (en) * 2017-09-26 2018-02-16 平安科技(深圳)有限公司 Page configuration method and server
CN108011930A (en) * 2017-11-17 2018-05-08 阿里巴巴集团控股有限公司 Data processing method and device, terminal device, server
CN110086747A (en) * 2018-01-25 2019-08-02 北京元盛科技有限公司 A kind of unified certification that supporting more client's multisystems and authority control system
CN110674017B (en) * 2018-07-03 2023-04-28 百度在线网络技术(北京)有限公司 Buried point method, buried point device and storage medium
CN114130016B (en) * 2021-12-07 2023-07-14 腾讯科技(深圳)有限公司 Control resource management method and related device

Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101241432A (en) * 2007-12-11 2008-08-13 金蝶软件(中国)有限公司 Application program interface style control method and device
CN101859245A (en) * 2009-04-09 2010-10-13 北大方正集团有限公司 Method and device for generating user interface
CN104657174A (en) * 2015-02-03 2015-05-27 百度在线网络技术(北京)有限公司 Method and device for dynamically realizing application function
CN105094832A (en) * 2015-08-01 2015-11-25 李志丹 WYSIWYG method and system for dynamically generating user interface
CN105446739A (en) * 2015-11-16 2016-03-30 深圳市创维电器科技有限公司 UI interface setting method and apparatus

Family Cites Families (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
JP2014127879A (en) * 2012-12-26 2014-07-07 Panasonic Corp Broadcast image output device, broadcast image output method, and television
US9876652B2 (en) * 2014-05-20 2018-01-23 Savant Systems, Llc Automatic configuration of control device user interface in a home automation system

Patent Citations (5)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101241432A (en) * 2007-12-11 2008-08-13 金蝶软件(中国)有限公司 Application program interface style control method and device
CN101859245A (en) * 2009-04-09 2010-10-13 北大方正集团有限公司 Method and device for generating user interface
CN104657174A (en) * 2015-02-03 2015-05-27 百度在线网络技术(北京)有限公司 Method and device for dynamically realizing application function
CN105094832A (en) * 2015-08-01 2015-11-25 李志丹 WYSIWYG method and system for dynamically generating user interface
CN105446739A (en) * 2015-11-16 2016-03-30 深圳市创维电器科技有限公司 UI interface setting method and apparatus

Also Published As

Publication number Publication date
CN106055988A (en) 2016-10-26

Similar Documents

Publication Publication Date Title
CN106055988B (en) For the authority control method and device of control
CN105474678B (en) For the concentration selection application license of mobile device
CN103595730B (en) A kind of ciphertext cloud storage method and system
US9495084B2 (en) Method and apparatus for widget and widget-container distribution control based on content rules
CN103763313B (en) File protection method and system
US8219544B2 (en) Method and a computer program product for indexing files and searching files
CN103988198B (en) Application market manages control
CN108289098B (en) Authority management method and device of distributed file system, server and medium
US20200304430A1 (en) Systems and methods for locating application-specific data on a remote endpoint computer
CN104796412B (en) End-to-end cloud service system and access method to its sensitive data
CN106502840A (en) A kind of data back up method, apparatus and system
US10447702B2 (en) Digital credential tiers
US9432344B2 (en) Secure storage and sharing of user objects
CN108924511A (en) A kind of smart home monitoring method and system
CN107040520A (en) A kind of cloud computing data-sharing systems and method
US20150222431A1 (en) Random identifier generation for offline database
CN106778331A (en) A kind of monitoring method of application program, apparatus and system
CN104580210A (en) Hotlinking prevention method, hotlinking prevention assembly and cloud platform under cloud platform environment
CN103208043A (en) Method and system for providing hotel services
CN103428260A (en) System and method for allocating server to terminal and efficiently delivering messages to the terminal
US11777724B2 (en) Data fragmentation and reconstruction
CN110210191A (en) A kind of data processing method and relevant apparatus
CN109034963A (en) A kind of shared bicycle monitoring and managing method based on big data
CN112948804B (en) Program control method, device and computer readable storage medium
CN109560925A (en) Key information Supply Method and the device for utilizing key information Supply Method

Legal Events

Date Code Title Description
C06 Publication
PB01 Publication
C10 Entry into substantive examination
SE01 Entry into force of request for substantive examination
GR01 Patent grant
GR01 Patent grant
PP01 Preservation of patent right
PP01 Preservation of patent right

Effective date of registration: 20220726

Granted publication date: 20190122