CN105608366B - User authority control method and device - Google Patents
User authority control method and device Download PDFInfo
- Publication number
- CN105608366B CN105608366B CN201410660468.3A CN201410660468A CN105608366B CN 105608366 B CN105608366 B CN 105608366B CN 201410660468 A CN201410660468 A CN 201410660468A CN 105608366 B CN105608366 B CN 105608366B
- Authority
- CN
- China
- Prior art keywords
- user
- role
- access
- right set
- user right
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000000034 method Methods 0.000 title claims abstract description 32
- 230000014509 gene expression Effects 0.000 claims abstract description 77
- 238000013507 mapping Methods 0.000 claims description 7
- 230000008569 process Effects 0.000 abstract description 7
- 230000006870 function Effects 0.000 description 63
- 238000010586 diagram Methods 0.000 description 10
- 238000005516 engineering process Methods 0.000 description 4
- 230000008859 change Effects 0.000 description 3
- 150000001875 compounds Chemical class 0.000 description 2
- 230000000694 effects Effects 0.000 description 2
- SYHGEUNFJIGTRX-UHFFFAOYSA-N methylenedioxypyrovalerone Chemical compound C=1C=C2OCOC2=CC=1C(=O)C(CCC)N1CCCC1 SYHGEUNFJIGTRX-UHFFFAOYSA-N 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- GOLXNESZZPUPJE-UHFFFAOYSA-N spiromesifen Chemical compound CC1=CC(C)=CC(C)=C1C(C(O1)=O)=C(OC(=O)CC(C)(C)C)C11CCCC1 GOLXNESZZPUPJE-UHFFFAOYSA-N 0.000 description 2
- 230000003068 static effect Effects 0.000 description 2
- 238000006243 chemical reaction Methods 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 238000013461 design Methods 0.000 description 1
- 238000011161 development Methods 0.000 description 1
- 238000012545 processing Methods 0.000 description 1
- 230000004044 response Effects 0.000 description 1
Landscapes
- Storage Device Security (AREA)
Abstract
The embodiment of the present invention provides a kind of user authority control method and device, includes at least one attribute value in the user information by obtaining the user information of access user;At least one described attribute value is matched with role expressions, obtains the role of the access user;User right set corresponding with the role is obtained, includes at least one business function in the user right set;User right is controlled according to the user right set.As can be seen that in the process, the role for accessing user is to carry out matching dynamic acquisition with role expressions by the attribute value of access user in each access, the huge electronics business hall system of user volume can be suitable for.
Description
Technical field
The present embodiments relate to the communication technology more particularly to a kind of user authority control methods and device.
Background technique
Online electronics business hall (E-Care) can provide telephone expenses inquiry for mobile phone user, bill inquiry, recharging and paying, change set
It eats, change account phase etc. business function.
In the prior art, the corresponding relationship of preset role and user right, different roles correspond to different in systems
User right set, user right set refer to the permission using business function, are each user's static configuration role, Yong Hudeng
After recording system, according to the role for giving user configuration, the corresponding user right set of role is obtained, when user uses certain business function
When, control whether user is able to use the business function according to user right set.
However, the user volume of the online electronics business hall such as E-Care is increasingly huge with the rapid development of network technology, adopt
With the method for the prior art, the huge electronics business hall system of user volume can not be suitable for.
Summary of the invention
The embodiment of the present invention provides a kind of user authority control method and device, to be suitable for the huge electronics battalion of user volume
Industry Room system.
First aspect of the embodiment of the present invention provides a kind of user authority control method, comprising:
The user information of access user is obtained, includes at least one attribute value in the user information;
At least one described attribute value is matched with role expressions, obtains the role of the access user;
User right set corresponding with the role is obtained, includes at least one business function in the user right set
Energy;
User right is controlled according to the user right set.
With reference to first aspect, in the first possible implementation, described by least one described attribute value and role
Expression formula is matched, and the role of the access user is obtained, comprising:
Role's decision Binary Tree is generated according to the role expressions;
It, will at least one described attribute value and role's decision Binary Tree progress using postorder traversal matching algorithm
Match, obtains the role of access user.
With reference to first aspect or the first possible implementation, in the second possible implementation, the basis
The user right set controls user right, comprising:
If the business function of the access of the user is the function of belonging in the user right set, allow the use
Family accesses the business function;
If the business function of the access of the user is not belonging to the function in the user right set, forbid the use
Family accesses the business function.
With reference to first aspect or the first or second of possible implementation, in the third possible implementation,
It is described to match at least one described attribute value with role's expression, obtain the role of the access user, comprising:
Session stage is being established, at least one described attribute value is matched with role's expression, the access is obtained and uses
The role at family.
With reference to first aspect or the first any possible implementation into the third possible implementation,
It is described to obtain user right set corresponding with the role in four kinds of possible implementations, comprising:
According to the mapping table of role and user right set, the corresponding user right set of the role is obtained.
Second aspect of the embodiment of the present invention provides a kind of user right control device, comprising:
Module is obtained, includes at least one attribute value in the user information for obtaining the user information of access user;
Matching module obtains the access and uses for matching at least one described attribute value with role expressions
The role at family;
The acquisition module is also used to obtain user right set corresponding with the role, the user right set
In include at least one business function;
Control module, for controlling user right according to the user right set.
In conjunction with second aspect, in the first possible implementation, the matching module is specifically used for according to the angle
Color expression formula generates role's decision Binary Tree;It, will at least one described attribute value and the angle using postorder traversal matching algorithm
Color decision Binary Tree is matched, and the role of access user is obtained.
In conjunction with second aspect or the first possible implementation, in the second possible implementation, the control
If the business function that module is specifically used for the access of the user is the function of belonging in the user right set, allow institute
It states user and accesses the business function;If the business function of the access of the user is not belonging to the function in the user right set
Can, then forbid the user to access the business function.
In conjunction with second aspect or the first or second of possible implementation, in the third possible implementation,
The matching module is specifically used for establishing session stage, at least one described attribute value is matched with role's expression, is obtained
Take the role of the access user.
In conjunction with second aspect or the first any possible implementation into the third possible implementation,
In four kinds of possible implementations, the acquisition module is specifically used for the mapping table according to role and user right set,
Obtain the corresponding user right set of the role.
User authority control method and device provided in an embodiment of the present invention, by obtaining the user information of access user,
It include at least one attribute value in the user information;At least one described attribute value is matched with role expressions, is obtained
Take the role of the access user;User right set corresponding with the role is obtained, includes in the user right set
At least one business function;User right is controlled according to the user right set.As can be seen that in the process, access is used
The role at family is that the attribute value in each access, by accessing user carries out matching dynamic acquisition with role expressions, and
It does not need to be pre-configured with role, the huge electronics business hall system of user volume can be suitable for.
Detailed description of the invention
In order to more clearly explain the embodiment of the invention or the technical proposal in the existing technology, to embodiment or will show below
There is attached drawing needed in technical description to be briefly described, it should be apparent that, the accompanying drawings in the following description is only this
Some embodiments of invention without any creative labor, may be used also for those of ordinary skill in the art
To obtain other drawings based on these drawings.
Fig. 1 is the flow diagram of user authority control method embodiment one of the present invention;
Fig. 2 is the schematic diagram that the present invention generates role's decision Binary Tree according to role expressions;
Fig. 3 is the flow diagram of user authority control method embodiment two of the present invention;
Fig. 4 is the structural schematic diagram of user right control device embodiment one of the present invention;
Fig. 5 is the structural schematic diagram of user right control device embodiment two of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete
Site preparation description, it is clear that described embodiments are only a part of the embodiments of the present invention, instead of all the embodiments.It is based on
Embodiment in the present invention, it is obtained by those of ordinary skill in the art without making creative efforts every other
Embodiment shall fall within the protection scope of the present invention.
The present invention by obtaining at least one attribute value of access user, by least one attribute value and role expressions into
Row matching, dynamic acquisition access the role of user, corresponding user right set are obtained according to role, according to user right set
Control user right.The affiliated role of static configuration user is not needed, and when user uses online electronics business hall system, dynamic
It determines role belonging to user, the huge electronics business hall system of user volume can be suitable for, and it is possible to according to actual operation
It needs, the corresponding relationship for flexibly modifying role and user right set accesses the angle of user when user property value changes
Color is also changed to no longer need to the matched role of attribute value of access user by opening during the operation of online electronics business hall system
Hair personnel modify the corresponding role's code of user, shorten the release cycle and O&M cost of version.With existing hard coded
Mode is compared, and hard coded mode refers to the corresponding access privilege control code coding of each business function in business function module
In, the access privilege control code being originally scattered in each business function module, the present invention uses unified permission view, is conducive to
The distribution and management of user right, also, compared with hard coded mode, the modification of permission control routine in hard coded mode can
Business function module local instability can be caused, influences the reliability service of system, and the solution of the present invention, without changing code,
Therefore, the stability and reliability of system be will not influence;In addition to this, developer no longer needs to compile in each business function module
Write permission control routine, by same authority configuration management code, and the authority configuration management code is in other similar version
It can directly be multiplexed, improve product component degree.
Technical solution of the present invention is described in detail with specifically embodiment below.These specific implementations below
Example can be combined with each other, and the same or similar concept or process may be repeated no more in some embodiments.
Fig. 1 is the flow diagram of user authority control method embodiment one of the present invention, and the method for the present embodiment is as follows:
S101: obtaining the user information of access user, includes at least one attribute value in user information.
Specifically, it can be in process of user login, according to the information for capableing of unique identification user, from the data of user
User information relevant to the user is extracted in model.In different electronics business halls, the information for the user to be obtained may
Difference, such as: in the online business hall of mobile operator, attribute value can be with are as follows: network entry time, arrearage state, is stepped on ownership place
Record state etc.;In the online business hall of the shopping such as Taobao, attribute value can be with are as follows: registion time, shopping number, amount of consumption etc..
S102: at least one attribute value is matched with role expressions, obtains the role of access user.
Different roles corresponds to different role expressions, by user information at least one attribute value and each role
Expression formula is matched, using the corresponding role of matched role expressions as the role of above-mentioned access user.In general, establishing
At least one attribute value is matched with role's expression, obtains the role of access user by session stage.
Wherein, at least one attribute value and role expressions are carried out there are many matched modes, the present invention does not make this
Limitation.One of matching way are as follows: be arranged in each role expressions comprising variable, reference value corresponding with variable, variable
Logical relation between reference value, after the attribute value for obtaining user, by the variable replacement in the role expressions of user
For corresponding attribute value, the calculated result of role expressions is obtained according to the logical relation between variable and reference value, according to meter
Calculate the role that result determines access user.
More specifically, role's decision Binary Tree can be generated according to role expressions;Then, it is matched and is calculated using postorder traversal
Method matches at least one attribute value with role's decision Binary Tree, obtains the role of access user.
S103: obtaining user right set corresponding with role, includes at least one business function in user right set.
Role and the corresponding relationship of user right set can be stored with plurality of data structures, one of, be to build
The mapping table of vertical role and user right set, one of example such as table 1, according to pair of role and user right set
Relation table is answered, the corresponding user right set of role is obtained.
The mapping table of table 1 role and user right set
It include at least one business function in user right set, such as: integral inquiry, accumulated point exchanging, historical bills are looked into
Ask etc..
S104: user right is controlled according to user right set.
Specifically, if the business function of the access of user is the function of belonging in user right set, user is allowed to visit
Ask above-mentioned business function;
If the business function of the access of user is not belonging to the function in user right set, user is forbidden to access above-mentioned industry
Business function.
It include at least one attribute in the user information by obtaining the user information of access user in the present embodiment
Value;At least one described attribute value is matched with role expressions, obtains the role of the access user;Obtain with it is described
Role's corresponding user right set includes at least one business function in the user right set;It is weighed according to the user
Limit set control user right.As can be seen that in the process, the role for accessing user is passed through in each login process
The attribute value of access user carries out matching dynamic acquisition with role expressions, does not need to be pre-configured with role, can be applicable in
In the electronics business hall system that user volume is huge.
In the above-described embodiments, different roles corresponds to different role expressions, and above-mentioned role expressions are by essence
Heart design, it can be matched according at least one attribute value of user with role expressions, determine different user roles.
It in the above-described embodiments, include at least one atomic expression in role expressions, each atomic expression includes
Entity attribute, operator, entity property value, it is referred to as compound when in expression formula including two or more atomic expressions
Expression formula, the relationship between atomic expression in compound expression are expressed by logical operation connector.
Such as: when in expression formula including two atomic expressions: [entity attribute, operator, entity property value] [logic fortune
Calculate connector] [entity attribute, operator, entity property value]
Such as: code is " login==true&&subscriberType==0 ", wherein " login==true "
For an atom expression, " login " presentation-entity attribute;"==" indicates operator;" true " presentation-entity attribute value;
" subscriberType==0 " is another atomic expression, " subscriberType " presentation-entity attribute;"==" table
Show operator;" 0 " presentation-entity attribute value;" && " indicates the logical operation connector between two atomic expressions.
Table is passed through to the rule definition of operator, logical operation connector definition rule and priority adjustment symbol below
Mode is described:
Table 1 is the rule definition of operator
Table 2 is the definition of logical operation connector rule
| Operator | Description | Operation data type |
| and | And | Operation expression |
| or | Or | Operation expression |
3 priority of table adjustment symbol
| Operator | Description | Operation data type |
| () | And | Operation expression |
The present invention also provides an examples, generate role's decision Binary Tree according to role expressions for describing;Then, it adopts
With postorder traversal matching algorithm, at least one attribute value is matched with role's decision Binary Tree, obtains the angle of access user
Color.
Example is as follows:
Role: loyal user
Role expressions: " login==true and subscriberType==0and activeDate > '
2012-01-01 ' and (status=='B01'or status=='B02') "
Expression formula meaning: user is more than 2 years in net, and situation is the prepaid user not shut down, and user completes login.
Function definition: the role is able to use accumulated point exchanging function.
The role's decision Binary Tree generated according to the role expressions in above-mentioned example is as shown in Fig. 2, Fig. 2 is root of the present invention
The schematic diagram of role's decision Binary Tree is generated according to role expressions;Conversion principle are as follows: the entity attribute of each atomic expression
Two crunode of leaf of binary tree is converted into entity property value, connector is converted into limb node, and adjusts according to priority
The node of y-bend is constituted.Using postorder traversal matching algorithm, i.e., the expression formula of left subtree is always first matched, then matches right son again
Tree, last root node matching, determines whether to belong to the corresponding role of role's decision Binary Tree according to final result, if
Final result is to indicate the result of affirmative, then it is assumed that the role for accessing user is the corresponding role of role's decision Binary Tree,
If final result is to indicate the result of negative, then it is assumed that the role for accessing user is not that role's decision Binary Tree is corresponding
Role.In Fig. 2 " $ { activeDate } ", " $ { type } ", " $ status ", " $ { Login } " indicate variable, " AND " indicate
Carry out logic and operation, " OR " indicates to carry out logic or operation.
The present invention also provides one embodiment to weigh after obtaining the corresponding user right set of role according to user
One example of limit set control user right.As shown in figure 3, Fig. 3 is user authority control method embodiment two of the present invention
Flow diagram;
S301: access user sends the access request of access business function 1 to unified rights blocker;
S302: unified rights blocker obtains user right set, and judges whether user has access business function 1
Permission;If it is not, S303 is executed, if so, executing S304.
Wherein, user right set usually uses set of URL to close and indicates.
If the URL of user access request is not in the URL of user right set, it is determined that user does not access business function
The permission of energy 1;If the URL of user access request is in the URL of user right set, it is determined that user has access business function
The permission of energy 1;
S303: unified rights blocker sends to access user and indicates without access authority.
This step is optional step, and access user can not carry out next step operation, that is, indicate no access authority.
S304: the access request of user is forwarded to 1 module of business function by unified rights blocker;
S305: 1 module of business function carries out business processing;
S306: 1 module of business function sends the response data of access request to access user.
One user only need to determine the role of primary access user during session establishment in a conversation procedure,
After session establishment, the accessible multiple business functions of user, to the access authority of each business function by establishing session
The corresponding user right set judgement of determining role in the process.
Using the above method of the invention, has the advantages that but be not limited to as follows: not needing to be pre-configured with user role, it can
The electronics business hall system huge suitable for user volume, and it is possible to flexibly modify role and user according to actual operation needs
The corresponding relationship of permission set, when user property value changes, user role also synchronize change for after variation
The matched role of attribute value no longer needs to modify the corresponding role's code of user by developer, shortens the publication week of version
Phase and O&M cost.Compared with existing hard coded mode, hard coded mode refers to the corresponding access authority of each business function
Control routine encodes in business function module, the access privilege control code being originally scattered in each business function module, this
Invention uses unified permission view, conducive to the distribution and management of user right, also, compared with hard coded mode, hard coded
The modification of permission control routine in mode, may cause business function module local instability, influence the reliability service of system, and
Therefore the solution of the present invention, will not influence the stability and reliability of system without changing code;In addition to this, developer
It no longer needs to write permission control routine in each business function module, by same authority configuration management code, and the permission is matched
Setting management code can directly be multiplexed in other similar version, improve product component degree.
Fig. 4 is the structural schematic diagram of user right control device embodiment one of the present invention, as shown in figure 4, the present embodiment
Device includes obtaining module 401, matching module 402 and control module 403, wherein obtains module 401 for obtaining access user
User information, include at least one attribute value in above-mentioned user information;Matching module 402 is used at least one above-mentioned attribute
Value is matched with role expressions, obtains the role of above-mentioned access user;Above-mentioned acquisition module 402 be also used to obtain with it is above-mentioned
The corresponding user right set of role includes at least one business function in above-mentioned user right set;Control module 403 is used for
User right is controlled according to above-mentioned user right set.
In the above-described embodiments, above-mentioned matching module 402 is specifically used for generating role's decision according to above-mentioned role expressions
Binary tree;Using postorder traversal matching algorithm, at least one above-mentioned attribute value is matched with above-mentioned role's decision Binary Tree,
Obtain the role of access user.
In the above-described embodiments, if the business function that above-mentioned control module 403 is specifically used for the access of above-mentioned user is to belong to
Function in above-mentioned user right set then allows above-mentioned user to access above-mentioned business function;If the access of above-mentioned user
Business function is not belonging to the function in above-mentioned user right set, then above-mentioned user is forbidden to access above-mentioned business function.
In the above-described embodiments, above-mentioned matching module 402 is specifically used for establishing session stage, by least one above-mentioned category
Property value and role expression match, obtain the role of above-mentioned access user.
In the above-described embodiments, above-mentioned acquisition module 402 is specifically used for closing according to role is corresponding with user right set
It is table, obtains the corresponding user right set of above-mentioned role.
The device of the present embodiment, the corresponding technical solution that can be used for executing embodiment of the method shown in Fig. 1, realization principle
Similar with technical effect, details are not described herein again.
Fig. 5 is the structural schematic diagram of user right control device embodiment two of the present invention, as shown in figure 5, the present embodiment
Device includes memory 501 and processor 502, wherein above-mentioned memory 501, which is used to store, executes user authority control method
Code;Above-mentioned processor 502 is used to call above-mentioned code, performs the following operations:
The user information of access user is obtained, includes at least one attribute value in the user information;
At least one described attribute value is matched with role expressions, obtains the role of the access user;
User right set corresponding with the role is obtained, includes at least one business function in the user right set
Energy;
User right is controlled according to the user right set.
In the above-described embodiments, processor 502 is specifically used for generating role's decision Binary Tree according to the role expressions;
Using postorder traversal matching algorithm, at least one described attribute value is matched with role's decision Binary Tree, obtains and visit
Ask the role of user.
In the above-described embodiments, if processor 502 is described to belong to specifically for the business function of the access of the user
Function in user right set then allows the user to access the business function;If the business function of the access of the user
The function that can be not belonging in the user right set then forbids the user to access the business function.
In the above-described embodiments, processor 502 is specifically used for establishing session stage, will at least one described attribute value with
Role's expression matches, and obtains the role of the access user.
In the above-described embodiments, processor 502 is specifically used for the mapping table according to role and user right set, obtains
Take the corresponding user right set of the role.
The device of the present embodiment, the corresponding technical solution that can be used for executing embodiment of the method shown in Fig. 1, realization principle
Similar with technical effect, details are not described herein again.
Those of ordinary skill in the art will appreciate that: realize that all or part of the steps of above-mentioned each method embodiment can lead to
The relevant hardware of program instruction is crossed to complete.Program above-mentioned can be stored in a computer readable storage medium.The journey
When being executed, execution includes the steps that above-mentioned each method embodiment to sequence;And storage medium above-mentioned include: ROM, RAM, magnetic disk or
The various media that can store program code such as person's CD.
Finally, it should be noted that the above embodiments are only used to illustrate the technical solution of the present invention., rather than its limitations;To the greatest extent
Pipe present invention has been described in detail with reference to the aforementioned embodiments, those skilled in the art should understand that: its according to
So be possible to modify the technical solutions described in the foregoing embodiments, or to some or all of the technical features into
Row equivalent replacement;And these are modified or replaceed, various embodiments of the present invention technology that it does not separate the essence of the corresponding technical solution
The range of scheme.
Claims (6)
1. a kind of user authority control method characterized by comprising
The user information of access user is obtained, includes at least one attribute value in the user information;
At least one described attribute value is matched with role expressions, obtains the role of the access user;
User right set corresponding with the role is obtained, includes at least one business function in the user right set;
User right is controlled according to the user right set;
Wherein, described to match at least one described attribute value with role expressions, the role of the access user is obtained,
Include:
Role's decision Binary Tree is generated according to the role expressions;
Using postorder traversal matching algorithm, at least one described attribute value is matched with role's decision Binary Tree, is obtained
Take the role of access user;
Wherein, the role expressions include at least one atomic expression, and the atomic expression includes entity attribute, operation
Symbol, entity property value;It is connected between at least one described atomic expression by connector;
It is correspondingly, described to generate role's decision Binary Tree according to the role expressions, comprising:
Session stage is being established, the entity attribute of at least one atomic expression and entity property value are converted into role and determined
Connector between at least one described atomic expression is converted into role's decision Binary Tree by two crunode of leaf of plan binary tree
Limb node, and according to priority adjust role's decision Binary Tree node constitute.
2. the method according to claim 1, wherein described control user's power according to the user right set
Limit, comprising:
If the business function of the access of the user is the function of belonging in the user right set, the user is allowed to visit
Ask the business function;
If the business function of the access of the user is not belonging to the function in the user right set, the user is forbidden to visit
Ask the business function.
3. the method according to claim 1, wherein described obtain user right collection corresponding with the role
It closes, comprising:
According to the mapping table of role and user right set, the corresponding user right set of the role is obtained.
4. a kind of user right control device characterized by comprising
Module is obtained, includes at least one attribute value in the user information for obtaining the user information of access user;
Matching module obtains the access user's for matching at least one described attribute value with role expressions
Role;
The acquisition module is also used to obtain user right set corresponding with the role, wraps in the user right set
Containing at least one business function;
Control module, for controlling user right according to the user right set;
Wherein, the matching module is specifically used for generating role's decision Binary Tree according to the role expressions;Using postorder time
Matching algorithm is gone through, at least one described attribute value is matched with role's decision Binary Tree, obtains the angle of access user
Color;
Wherein, the role expressions include at least one atomic expression, and the atomic expression includes entity attribute, operation
Symbol, entity property value;It is connected between at least one described atomic expression by connector;
It is correspondingly, described to generate role's decision Binary Tree according to the role expressions, comprising:
Session stage is being established, the entity attribute of at least one atomic expression and entity property value are converted into role and determined
Connector between at least one described atomic expression is converted into role's decision Binary Tree by two crunode of leaf of plan binary tree
Limb node, and according to priority adjust role's decision Binary Tree node constitute.
5. device according to claim 4, which is characterized in that if the control module is specifically used for the access of the user
Business function be the function of belonging in the user right set, then allow the user to access the business function;If institute
The business function for stating the access of user is not belonging to function in the user right set, then the user is forbidden to access the industry
Business function.
6. device according to claim 4, which is characterized in that the acquisition module is specifically used for being weighed according to role and user
The mapping table for limiting set, obtains the corresponding user right set of the role.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410660468.3A CN105608366B (en) | 2014-11-18 | 2014-11-18 | User authority control method and device |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201410660468.3A CN105608366B (en) | 2014-11-18 | 2014-11-18 | User authority control method and device |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN105608366A CN105608366A (en) | 2016-05-25 |
| CN105608366B true CN105608366B (en) | 2019-07-12 |
Family
ID=55988295
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201410660468.3A Active CN105608366B (en) | 2014-11-18 | 2014-11-18 | User authority control method and device |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN105608366B (en) |
Families Citing this family (11)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106126977B (en) * | 2016-06-26 | 2019-01-11 | 厦门天锐科技股份有限公司 | A kind of efficient electronic document permission inheritance and transmission method |
| CN106302483B (en) * | 2016-08-19 | 2019-09-27 | 上海帜讯信息技术股份有限公司 | Decentralized management method and system |
| CN107733846B (en) * | 2017-06-22 | 2020-11-17 | 英特斯达图片有限公司 | Method and device for allocating user permission |
| CN107943523B (en) * | 2017-11-15 | 2021-03-16 | 中国银行股份有限公司 | User permission judgment method and device for electronic bank |
| CN109344569B (en) * | 2018-09-28 | 2020-09-18 | 北京赛博贝斯数据科技有限责任公司 | Software use authorization method and system |
| CN109214151A (en) * | 2018-09-28 | 2019-01-15 | 北京赛博贝斯数据科技有限责任公司 | The control method and system of user right |
| CN109753574B (en) * | 2018-12-29 | 2021-09-07 | 广州市中智软件开发有限公司 | Electronic certificate checking method, system and storage medium for judging job-related need |
| CN109933908A (en) * | 2019-03-14 | 2019-06-25 | 恒生电子股份有限公司 | A kind of service node model store method, application method and device |
| CN110414262A (en) * | 2019-06-28 | 2019-11-05 | 浙江中烟工业有限责任公司 | A kind of implementation method of configuration software subscriber management function |
| CN110457629A (en) * | 2019-07-19 | 2019-11-15 | 口碑(上海)信息技术有限公司 | Permission processing, authority control method and device |
| CN110992005B (en) * | 2019-12-23 | 2024-02-06 | 普元信息技术股份有限公司 | Method and system for realizing data authority control processing in big data application |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101414253A (en) * | 2007-10-17 | 2009-04-22 | 华为技术有限公司 | Method and system for managing authority |
| CN101441688A (en) * | 2007-11-20 | 2009-05-27 | 阿里巴巴集团控股有限公司 | User authority allocation method and user authority control method |
| CN101729403A (en) * | 2009-12-10 | 2010-06-09 | 上海电机学院 | Access control method based on attribute and rule |
Family Cites Families (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US7591000B2 (en) * | 2003-02-14 | 2009-09-15 | Oracle International Corporation | System and method for hierarchical role-based entitlements |
| CN101859262A (en) * | 2010-05-10 | 2010-10-13 | 新邮通信设备有限公司 | Object association relationship analysis method applied to mobile communication system |
-
2014
- 2014-11-18 CN CN201410660468.3A patent/CN105608366B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101414253A (en) * | 2007-10-17 | 2009-04-22 | 华为技术有限公司 | Method and system for managing authority |
| CN101441688A (en) * | 2007-11-20 | 2009-05-27 | 阿里巴巴集团控股有限公司 | User authority allocation method and user authority control method |
| CN101729403A (en) * | 2009-12-10 | 2010-06-09 | 上海电机学院 | Access control method based on attribute and rule |
Also Published As
| Publication number | Publication date |
|---|---|
| CN105608366A (en) | 2016-05-25 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105608366B (en) | User authority control method and device | |
| CN106250782B (en) | A kind of data permission control method and device based on SQL statement parsing | |
| Economou et al. | Equilibrium customer strategies and social–profit maximization in the single‐server constant retrial queue | |
| CN105335207B (en) | Method and apparatus for managing virtual machine instance | |
| WO2017162113A1 (en) | Method and device for outputting risk information and constructing risk information | |
| JP6703013B2 (en) | Payment threshold acquisition method and device | |
| US9426034B2 (en) | Usage policy for resource management | |
| CN107967316A (en) | A kind of method of data synchronization, equipment and computer-readable recording medium | |
| CN108667867A (en) | Date storage method and device | |
| CN104348902B (en) | It is a kind of for network inputs/output equipment device and method | |
| CN105739956B (en) | The method and system of the building intelligent rules model of computer system | |
| CN109636592A (en) | High-performance intelligence Contract Design | |
| CN111988402A (en) | Data verification method and device and electronic equipment | |
| CN108009444A (en) | Authority control method, device and the computer-readable recording medium of full-text search | |
| CN107924335A (en) | The virtualization of graphics process in provider network | |
| CN113516246A (en) | Parameter optimization method, quantum chip control method and device | |
| CN109588054A (en) | Accurate and detailed modeling using distributed simulation engine to the system with large complicated data set | |
| CN107621946A (en) | A kind of software development methodology, apparatus and system | |
| CN107844498A (en) | A kind of database high-volume exports the method and system of data | |
| CN111163149A (en) | Intelligent contract platform method based on block chain | |
| CN109742805A (en) | Consumption optimization method for power distribution network containing distributed wind power and related product | |
| De Vos et al. | Combining event-and state-based norms | |
| CN107491460B (en) | Data mapping method and device of adaptation system | |
| CN106021270B (en) | The method and system of synergistic data intelligence between data warehouse and big data storage | |
| CN104657216A (en) | Resource allocation method and device for resource pool |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20200225 Address after: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen Patentee after: HUAWEI TECHNOLOGIES Co.,Ltd. Address before: 210012 Ande Gate No. 94, Yuhuatai District, Jiangsu, Nanjing Patentee before: HUAWEI SOFTWARE TECHNOLOGIES Co.,Ltd. |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20211208 Address after: Room 2011, building 1, No.35, Shishan Road, high tech Zone, Suzhou, Jiangsu 215000 Patentee after: SUZHOU XIQUAN SOFTWARE TECHNOLOGY Co.,Ltd. Address before: 215010 room 704, building 5, No. 556, Changjiang Road, high tech Zone, Suzhou, Jiangsu Patentee before: SUZHOU YUDESHUI ELECTRICAL TECHNOLOGY Co.,Ltd. Effective date of registration: 20211208 Address after: 215010 room 704, building 5, No. 556, Changjiang Road, high tech Zone, Suzhou, Jiangsu Patentee after: SUZHOU YUDESHUI ELECTRICAL TECHNOLOGY Co.,Ltd. Address before: 518129 Bantian HUAWEI headquarters office building, Longgang District, Guangdong, Shenzhen Patentee before: HUAWEI TECHNOLOGIES Co.,Ltd. |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20230105 Address after: No. 578, Gongye 3rd Road, Boxing Economic Development Zone, Boxing County, Binzhou City, Shandong Province, 256599 Patentee after: Boxing Xingbo Investment Co.,Ltd. Address before: Room 2011, building 1, No.35, Shishan Road, high tech Zone, Suzhou, Jiangsu 215000 Patentee before: SUZHOU XIQUAN SOFTWARE TECHNOLOGY Co.,Ltd. |
|
| TR01 | Transfer of patent right | ||
| TR01 | Transfer of patent right |
Effective date of registration: 20230901 Address after: No. 57 Maxing Road, Changping District, Beijing 102200 Patentee after: CHINA ORDNANCE EQUIPMENT GROUP ORDNANCE EQUIPMENT Research Institute Address before: No. 578, Gongye 3rd Road, Boxing Economic Development Zone, Boxing County, Binzhou City, Shandong Province, 256599 Patentee before: Boxing Xingbo Investment Co.,Ltd. |