CN105005730A - Authority design method based on APP (application) - Google Patents
Authority design method based on APP (application) Download PDFInfo
- Publication number
- CN105005730A CN105005730A CN201510495912.5A CN201510495912A CN105005730A CN 105005730 A CN105005730 A CN 105005730A CN 201510495912 A CN201510495912 A CN 201510495912A CN 105005730 A CN105005730 A CN 105005730A
- Authority
- CN
- China
- Prior art keywords
- role
- authority
- app
- items
- design method
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention relates to an authority design method based on an APP (application). The method comprises the following steps: (1), establishing a role; (2) carrying out authority configuration on the established role; (3), endowing a department with the role with configured authority; (4), endowing a person with the role with configured authority. According to the authority design method, the roles are established on the basis of setting different APP authority items instead of on the basis of different positions, all needed is to configure authority for roles and establish relationships between persons and roles, so that authority setting is completed, therefore, uniform setting of role authority is realized conveniently, and authority configuration of persons is completed conveniently.
Description
Technical field
The invention belongs to application program management technical field, relate to based on APP application, the Permission Design of the especially APP application in industrial electronic field.
Background technology
Along with the high speed development of Software Industry, also there is a lot of software product solving different demand in industrial electronic field thereupon.Due to the accumulation of numerous software product, user often needs to carry out change-over switch between multiple different software product, needs ceaselessly to open and close multiple different software product, thus causes the delay of working time.
Meanwhile, software product release upgrades too fast, and in software product release renewal process, often produce loss of data, and user is often worried to loss of data between multiple version.And software product is too much, user is often because download or copy software time long and reduce work efficiency.Moreover software product is numerous, each software product has the data of oneself, thus causes the data of each software product to compare dispersion, makes use and the Comparison of Management difficulty of data.
Therefore, for the ease of various software product, i.e. the management of APP application, enterprise needs to use the management system based on APP application.But, because whole enterprise is all in the same set of management system of use, and the title and rank of enterprise personnel and concerning security matters grade etc. all have difference, in this case, just need for different users designs different authorities, so that the difference in functionality that different users can use different APP to apply.
But current existing Permission Design method is all set up role with the position of user difference, thus causes role to be difficult to Uniting, adds the difficulty of Permission Design, and is unfavorable for the authority configuration of personnel.
In view of the above-mentioned technological deficiency of prior art, in the urgent need to developing a kind of novel Permission Design method based on APP application.
Summary of the invention
The object of this invention is to provide a kind of Permission Design method based on APP application, this Permission Design method makes role set up with position difference, but difference is set by APP authority items and sets up, be convenient to realize the unified of role-security and arrange, and be convenient to the authority configuration of personnel.
To achieve these goals, the invention provides following technical scheme: a kind of Permission Design method based on APP application, is characterized in that, comprise the following steps:
(1), a role is created;
(2) role, for creating configures authority;
(3), department is given by the role configuring authority;
(4), personnel are given by the role configuring authority.
Further, wherein, the role for creating configures authority and comprises the following steps:
(2.1) ID, by each APP applied, version number and authority items are stored in APP information list, and described authority items comprises the ID of authority items, title and default value;
(2.2), call described APP information list, and created role is got up with the APP association of corresponding version number;
(2.3), show and revise the default value of authority items apply to the role relevant APP created, formation authority credentials;
(2.4), by amended authority credentials be saved in the role data list of described role, form the complete role data list of described role;
(2.5), complete role data list described in each APP application call, read authority credentials wherein, realize the configuration of authority.
Permission Design method based on APP application of the present invention has following Advantageous Effects:
1, different authorities can be designed for the user of different professional level and different security level, thus be convenient to the management of authority.
2, in role's establishment and Role-rights setting, role sets up with position difference, but difference is set by APP authority items and sets up, the method that this role sets up only needs to configure authority to role, and personnel and role create the setting that relation just can complete authority.
3, facilitate department head can the authority of controllers easily.
4, convenient is personnel depaly role, has been convenient to the priority assignation of personnel.
Accompanying drawing explanation
Fig. 1 is the formation schematic diagram of the Permission Design system realizing the Permission Design method based on APP application of the present invention.
Fig. 2 is the schematic diagram of authority configuration.
Fig. 3 is the process flow diagram of the Permission Design method based on APP application of the present invention.
Fig. 4 is the process flow diagram of authority configuration.
Embodiment
Below in conjunction with drawings and Examples, the present invention is further described, and the content of embodiment is not as the restriction to protection scope of the present invention.
Before introducing the Permission Design method based on APP application of the present invention, first introduce the Permission Design system realizing this Permission Design method.
Fig. 1 shows the formation schematic diagram of the Permission Design system realizing the Permission Design method based on APP application of the present invention.As shown in Figure 1, described Permission Design system comprises role's creation module, role-security configuration module, public data center, role and department's relation configuration module and role and personnel's relation configuration module.Wherein,
Described public data center comprises APP information list and role data list.Described APP information list has three fields, is respectively the ID of APP application, version number and authority items.Wherein, described authority items comprises the ID of authority items, title and default value.That is, the content of the character string stored in described authority items comprises the ID of authority items, title and default value.Like this, ID that each APP applies, the ID of version number and authority items, title and default value can be stored by described APP information list.The content of described APP information list comes from each APP and applies.
Described role data list has four fields, the ID that the title being respectively role and the APP be associated with described role apply, version number and authority items.Wherein, described authority items comprises the ID of authority items, title and authority credentials.That is, the content of the character string stored in described authority items comprises the ID of authority items, title and the authority credentials authority credentials of described role configuration (that is, be by described role-security configuration module).Like this, the ID that each APP that can be stored as described role configuration by described role data list applies and the ID of version number and authority items, title and authority credentials.The content of described role data list comes from role's creation module described later and role-security configuration module.
Described role's creation module is for creating a role.In the present invention, particularly, described role's creation module, when an establishment role, first can allow founder input the title of role, in described role data list, then generate the data of this role's title.By the role that described role's creation module creates, external manifestation is only role's title, inherent performance is the data of adding role's title in described role data list, and the ID that the APP corresponding with the data of this role's title applies, version number and authority items are then empty.
The role that described role-security configuration module is used for for described role's creation module creates configures authority.Fig. 2 shows the schematic diagram of authority configuration.In the present invention, as shown in Figure 2, when each APP application is uploaded to management system, the ID of each APP application, version number and authority items can be filled in, described authority items comprises the ID of authority items, title and default value, the content filled in can be saved in described APP information list, so that the management of applying each APP.
Then, described role-security configuration module can call the APP information list in described public data center, thus the ID applied by each APP and version number show role to configure personnel.Like this, role configures personnel and created role can be applied with the APP of corresponding version number and be associated, thus associating of realizing that role applies with APP.
Then, role configures personnel and selectes the APP be associated with described role and to apply and after version number, and the ID of the authority items APP of this version number can applied, title and default value display.At this moment, role configures the default value that personnel can revise each authority items.
Configure after personnel have revised the default value of each authority items role, ID, version number and authority items that the APP be associated with this role can apply by described role-security configuration module are all saved in described role data list.Wherein, described authority items comprises the ID of authority items, title and authority credentials, and described authority credentials is the value that role configures personnel and revised by default value, thus realizes the configuration of authority.Such as, if the value of authority items be 1 for granted rights, the value of authority items is 0 is not granted rights.Like this, by changing the value of authority items, and the value after changing being stored in described role data list, just can realizing the configuration of role-security.
Finally, each APP application can call described role data list, and reads the authority credentials in described role data list, completes the setting of role-security in APP application by described authority credentials.
Like this, in the present invention, in role's establishment and Role-rights setting, role sets up with position difference, but difference is set by APP authority items and sets up, the method that this role sets up only needs to configure authority to role, and personnel and role create the setting that relation just can complete authority.
Described role and department's relation configuration module are used for the described role configuring authority to give department.In the present invention, particularly, can be each Department formation virtual management personnel, when concrete configuration, the described role configuring authority can be given described virtual management personnel by described role and department's relation configuration module, is realized the configuration of role by described virtual management personnel.Like this, facilitate department head can the authority of controllers easily.
Described role and personnel's relation configuration module are used for the described role configuring authority to give personnel.In the present invention, the role configuring authority can directly associate with a certain individual with personal management configuration module by described role, that is, give some personnel by the role configuring authority; Also can give a departmental manager by the role configuring authority, give some concrete personnel by the role configuring authority again by departmental manager.Like this, convenient is personnel depaly role, has been convenient to the priority assignation of personnel.
As shown in Figure 1, in the present invention, after giving department by role, then personnel can be given by department; Also after the authority configuration completing role, directly personnel can be given by role.
Introduce the Permission Design method based on APP application of the present invention below.Fig. 3 shows the process flow diagram of the Permission Design method based on APP application of the present invention.As shown in Figure 3, the Permission Design method based on APP application of the present invention comprises the following steps:
First, a role is created.
In the present invention, create a role and comprise establishment role's title and the data generating this role's title in described role data list.
Secondly the role, for creating configures authority.
Different and to configure authority different with position from prior art, in the present invention, based on the authority items of APP application, configure the authority of role.
Wherein, Fig. 4 shows the process flow diagram of authority configuration.As shown in Figure 4, the role for creating configures authority and comprises the following steps:
1, the ID applied by each APP, version number and authority items are stored in APP information list.Wherein, described authority items comprises the ID of authority items, title and default value.Particularly, can when each APP application be uploaded to management system, require to fill in ID that each APP applies, version number and authority items, and corresponding contents is stored in described APP information list.
2, call described APP information list, and created role is got up with the APP association of corresponding version number.Particularly, can call described APP information list by role-security configuration module, the ID apply each APP and version number etc. are presented on described role-security configuration module.Like this, role configure personnel just can by the APP association of created role with corresponding version number.
3, show and revise the default value of the authority items applied to the relevant APP of role created.Particularly, after created role being got up with the APP association of corresponding version number, the ID of the authority items that the APP of the version number be associated with created role applies, title and default value can be shown; Meanwhile, role configures the default value that personnel can revise authority items, forms authority credentials.By revising the default value of authority items, the configuration of authority can be realized.
4, amended authority credentials is saved in the role data list of described role, forms the complete role data list of described role.Namely, after treating that the default value of all authority items has all been revised, by ID, title and authority items that the APP be associated with described role applies, comprise the ID of authority items, title and authority credentials, be filled in described role data list, form complete role data list.
5, complete role data list described in each APP application call, reads authority credentials wherein, realizes the configuration of authority.Because APP applies the authority credentials that have read in complete role data list, therefore, the authority credentials of the authority items of each APP application is subject to the impact of described complete role data list, thus can realize the configuration of authority.
Then, department is given by the role configuring authority.Wherein, can be each Department formation virtual management personnel, when concrete configuration, described virtual management personnel can be given by the described role configuring authority, be realized the configuration of role by described virtual management personnel.
Finally, personnel are given by the role configuring authority.Wherein, directly some personnel can be given by the role configuring authority; Also can give a departmental manager by the role configuring authority, give some concrete personnel by the role configuring authority again by departmental manager.Certainly, also after configuring authority, directly personnel can be given by the role configuring authority.
Permission Design method based on APP application of the present invention can design different authorities for the user of different professional level and different security level, thus is convenient to the management of authority.
The above embodiment of the present invention is only for example of the present invention is clearly described, and is not the restriction to embodiments of the present invention.For those of ordinary skill in the field, can also make other changes in different forms on the basis of the above description.Here cannot give exhaustive to all embodiments.Every belong to technical scheme of the present invention the apparent change of extending out or variation be still in the row of protection scope of the present invention.
Claims (2)
1., based on a Permission Design method for the management system of APP application, it is characterized in that, comprise the following steps:
(1), a role is created;
(2) role, for creating configures authority;
(3), department is given by the role configuring authority;
(4), personnel are given by the role configuring authority.
2. the Permission Design method of the management system based on APP application according to claim 1, is characterized in that, comprises the following steps for the role created configures authority:
(2.1) ID, by each APP applied, version number and authority items are stored in APP information list, and described authority items comprises the ID of authority items, title and default value;
(2.2), call described APP information list, and created role is got up with the APP association of corresponding version number;
(2.3), show and revise the default value of authority items apply to the role relevant APP created, formation authority credentials;
(2.4), by amended authority credentials be saved in the role data list of described role, form the complete role data list of described role;
(2.5), complete role data list described in each APP application call, read authority credentials wherein, realize the configuration of authority.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510495912.5A CN105005730A (en) | 2015-08-13 | 2015-08-13 | Authority design method based on APP (application) |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201510495912.5A CN105005730A (en) | 2015-08-13 | 2015-08-13 | Authority design method based on APP (application) |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN105005730A true CN105005730A (en) | 2015-10-28 |
Family
ID=54378399
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201510495912.5A Pending CN105005730A (en) | 2015-08-13 | 2015-08-13 | Authority design method based on APP (application) |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105005730A (en) |
Cited By (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105657011A (en) * | 2015-12-30 | 2016-06-08 | 东软集团股份有限公司 | OAuth-technology-based system integration method and device |
| CN107103228A (en) * | 2017-04-22 | 2017-08-29 | 成都牵牛草信息技术有限公司 | Man-to-man permission grant method and system of the based role to user |
| CN107742066A (en) * | 2017-09-18 | 2018-02-27 | 广东芬尼克兹节能设备有限公司 | Account authority configuring method, device, terminal device and computer-readable storage medium |
| CN108711037A (en) * | 2017-05-27 | 2018-10-26 | 成都牵牛草信息技术有限公司 | The commission of examination and approval workflow and its recommit method |
| CN108717620A (en) * | 2017-04-29 | 2018-10-30 | 成都牵牛草信息技术有限公司 | Based role is to the one-to-one Work-flow control method and system of user |
| CN108876313A (en) * | 2017-07-24 | 2018-11-23 | 成都牵牛草信息技术有限公司 | Setting method of the user in the permission of information interchange unit in system |
| CN109165524A (en) * | 2017-08-10 | 2019-01-08 | 成都牵牛草信息技术有限公司 | Examination & approval task based on modified RBAC mechanism of authorization control delivers method |
| US11750616B2 (en) | 2017-08-10 | 2023-09-05 | Chengdu Qianniucao Information Technology Co., Ltd. | Method for authorizing approval processes and approval nodes thereof for user |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040010519A1 (en) * | 2002-07-11 | 2004-01-15 | Sinn Richard P. | Rule based data management |
| US20060218394A1 (en) * | 2005-03-28 | 2006-09-28 | Yang Dung C | Organizational role-based controlled access management system |
| CN101739526A (en) * | 2009-12-16 | 2010-06-16 | 北京佳讯飞鸿电气股份有限公司 | Service system-oriented and oriented object-based rights management method |
| CN102393889A (en) * | 2011-09-19 | 2012-03-28 | 北京信城通数码科技有限公司 | Permissions configuration management system |
| CN104375865A (en) * | 2014-11-21 | 2015-02-25 | 北京金和软件股份有限公司 | Automatic APP management menu loading method based on category data |
-
2015
- 2015-08-13 CN CN201510495912.5A patent/CN105005730A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US20040010519A1 (en) * | 2002-07-11 | 2004-01-15 | Sinn Richard P. | Rule based data management |
| US20060218394A1 (en) * | 2005-03-28 | 2006-09-28 | Yang Dung C | Organizational role-based controlled access management system |
| CN101739526A (en) * | 2009-12-16 | 2010-06-16 | 北京佳讯飞鸿电气股份有限公司 | Service system-oriented and oriented object-based rights management method |
| CN102393889A (en) * | 2011-09-19 | 2012-03-28 | 北京信城通数码科技有限公司 | Permissions configuration management system |
| CN104375865A (en) * | 2014-11-21 | 2015-02-25 | 北京金和软件股份有限公司 | Automatic APP management menu loading method based on category data |
Cited By (15)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN105657011A (en) * | 2015-12-30 | 2016-06-08 | 东软集团股份有限公司 | OAuth-technology-based system integration method and device |
| CN105657011B (en) * | 2015-12-30 | 2018-11-23 | 东软集团股份有限公司 | System integration method and device based on OAUTH technology |
| CN107103228B (en) * | 2017-04-22 | 2021-02-02 | 成都牵牛草信息技术有限公司 | Role-based one-to-one authorization method and system for user permission |
| CN107103228A (en) * | 2017-04-22 | 2017-08-29 | 成都牵牛草信息技术有限公司 | Man-to-man permission grant method and system of the based role to user |
| US11363026B2 (en) | 2017-04-29 | 2022-06-14 | Chengdu Qianniucao Information Technology Co., Ltd. | Workflow control method and system based on one-to-one correspondence between roles and users |
| CN108717620A (en) * | 2017-04-29 | 2018-10-30 | 成都牵牛草信息技术有限公司 | Based role is to the one-to-one Work-flow control method and system of user |
| CN108711037A (en) * | 2017-05-27 | 2018-10-26 | 成都牵牛草信息技术有限公司 | The commission of examination and approval workflow and its recommit method |
| CN108711037B (en) * | 2017-05-27 | 2021-12-17 | 成都牵牛草信息技术有限公司 | Delegation and re-delegation method for approval workflow |
| CN108876313A (en) * | 2017-07-24 | 2018-11-23 | 成都牵牛草信息技术有限公司 | Setting method of the user in the permission of information interchange unit in system |
| EP3660709A4 (en) * | 2017-07-24 | 2021-06-09 | Chengdu Qianniucao Information Technology Co., Ltd | Method for setting permission of user in information exchange unit in system |
| CN109165524A (en) * | 2017-08-10 | 2019-01-08 | 成都牵牛草信息技术有限公司 | Examination & approval task based on modified RBAC mechanism of authorization control delivers method |
| CN109165524B (en) * | 2017-08-10 | 2021-10-29 | 成都牵牛草信息技术有限公司 | Examination and approval task transfer method based on improved RBAC (role-based policies Access control) authority control mechanism |
| US11750616B2 (en) | 2017-08-10 | 2023-09-05 | Chengdu Qianniucao Information Technology Co., Ltd. | Method for authorizing approval processes and approval nodes thereof for user |
| CN107742066B (en) * | 2017-09-18 | 2020-07-28 | 广东芬尼克兹节能设备有限公司 | Account permission configuration method and device, terminal equipment and computer storage medium |
| CN107742066A (en) * | 2017-09-18 | 2018-02-27 | 广东芬尼克兹节能设备有限公司 | Account authority configuring method, device, terminal device and computer-readable storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105005730A (en) | Authority design method based on APP (application) | |
| Roopaei et al. | Adaptive sliding mode control in a novel class of chaotic systems | |
| CN105204873B (en) | A kind of terminal and application interface display methods | |
| US20160364575A1 (en) | Document state interface | |
| CN102087594B (en) | Management method and device for extension point and plugins | |
| US10095482B2 (en) | Systems, methods, and media for graphical task creation | |
| CN104407916A (en) | Cloning method and device of virtual machine | |
| CN102393889A (en) | Permissions configuration management system | |
| US20160077807A1 (en) | Cloud based service design inheritance | |
| CN110263531B (en) | Password processing method and system for initializing account and electronic equipment | |
| CN104156222A (en) | Method for self-defining Android equipment desktop | |
| CN109586963A (en) | A kind of cloud emulation platform safe-guard system, server, terminal and method | |
| CN104572059A (en) | Processing method and device for modifying application name | |
| CN104461562A (en) | Task creating method and system | |
| CN103617070A (en) | Virtual machine migration method and device | |
| CN109491571A (en) | A kind of association of configuration item and its associated diagram methods of exhibiting and system | |
| CN104123155A (en) | Business system page layer development platform and method based on WEB | |
| CN102541544B (en) | The processing method of Tree control, Apparatus and system | |
| CN105094768A (en) | Application interface generation method and application interface generation device | |
| CN103186738A (en) | Software license management and control method and system for software resources, creating device and starting device | |
| CN105553916A (en) | Password login system | |
| CN109241727B (en) | Permission setting method and device | |
| WO2016201813A1 (en) | Dynamic layout method and system based on android | |
| CN105975265A (en) | Device based on improved MVP mode | |
| CN105046119A (en) | Permission design system based on APP (Application) |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20151028 |
|
| WD01 | Invention patent application deemed withdrawn after publication |