CN105930741A - Power system resource permission management system - Google Patents
Power system resource permission management system Download PDFInfo
- Publication number
- CN105930741A CN105930741A CN201610236998.4A CN201610236998A CN105930741A CN 105930741 A CN105930741 A CN 105930741A CN 201610236998 A CN201610236998 A CN 201610236998A CN 105930741 A CN105930741 A CN 105930741A
- Authority
- CN
- China
- Prior art keywords
- information
- resource
- role
- power system
- rights management
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q50/00—Systems or methods specially adapted for specific business sectors, e.g. utilities or tourism
- G06Q50/06—Electricity, gas or water supply
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Abstract
The present invention discloses a power system resource permission management system. The system comprises a resource management module that is used for managing resource information, a character management module that is used for managing character information and allocating a use permission of a corresponding resource to a target character, and a user management module that is used for managing user information and associating a corresponding character with a target user. System management is simplified into an association between a permission and a character and an association between a character and a user, permission allocation is flexible, and the management efficiency is relatively high.
Description
Technical field
The present invention relates to data processing field, particularly relate to a kind of power system resource Rights Management System.
Background technology
At present, the resource data related in power system is of a great variety, each user right to use to resource
Limit difference, carrying out being usually during access authorization for resource distribution needs the user distributing access authorization for resource the most straight to each
Connecing the authority that distribution is corresponding, such authority distributing method is comparatively laborious, and is not easy to be managed collectively,
The efficiency of management is relatively low.
Summary of the invention
In view of this, present invention is primarily targeted at a kind of power system resource Rights Management System of offer,
The resources use right limit of user can be managed efficiently.
For achieving the above object, the invention provides a kind of power system resource Rights Management System, including:
Resource management module, is used for managing resource information;
Role Management module, for role of manager's information, for the use of the resource of target roles distribution correspondence
Authority;
User management module, for managing user information, associates the role of correspondence for targeted customer.
Preferably, described resource information includes: resource name and the URL of resource.
Preferably, described Role Information includes:
Relation between role's title and role.
Preferably, between described role, relation includes inheritance and mutex relation.
Preferably, described user profile includes:
Account name, name, password, account status and nearest login time.
Preferably, described power system resource Rights Management System also includes:
Personnel information management module, for administrative staff's information, determines the personal information that targeted customer is corresponding.
Preferably, described power system resource Rights Management System also includes:
Organization and administration module, for setting up tissue according to the relation between personal information, manages organizational information.
Preferably, described personal information includes:
Sex, name, post, contact method and affiliated tissue.
Preferably, described organizational information includes:
Organization name, organizational hierarchy and tissue coding.
Preferably, described power system resource Rights Management System also includes:
Group management module, for setting up group, group information management for the personnel that role is identical.
A kind of power system resource Rights Management System that the application present invention provides, including resource management module,
For managing resource information, Role Management module is for role of manager's information, right for target roles distribution
The use authority of the resource answered, user management module, for managing user information, associate for targeted customer
Corresponding role, is reduced to associating of authority and role and associating of role and user by the management of system,
Flexibly, the efficiency of management is higher in authority distribution.
Accompanying drawing explanation
In order to be illustrated more clearly that the embodiment of the present invention or technical scheme of the prior art, below will be to reality
Execute the required accompanying drawing used in example or description of the prior art to be briefly described, it should be apparent that below,
Accompanying drawing in description is only embodiments of the invention, for those of ordinary skill in the art, not
On the premise of paying creative work, it is also possible to obtain other accompanying drawing according to the accompanying drawing provided.
Fig. 1 is the structural representation of the present invention a kind of power system resource Rights Management System embodiment one;
Fig. 2 is the structural representation of the present invention a kind of power system resource Rights Management System embodiment two.
Detailed description of the invention
Below in conjunction with the accompanying drawing in the embodiment of the present invention, the technical scheme in the embodiment of the present invention is carried out
Clearly and completely describe, it is clear that described embodiment is only a part of embodiment of the present invention,
Rather than whole embodiments.Based on the embodiment in the present invention, those of ordinary skill in the art are not having
Make the every other embodiment obtained under creative work premise, broadly fall into the scope of protection of the invention.
Embodiment one:
The invention provides a kind of power system resource Rights Management System, Fig. 1 shows electric power of the present invention
The structural representation of system resource Rights Management System embodiment one, including:
Resource management module 101, is used for managing resource information;
Described resource information can include the URL etc. of resource name and resource, and resource management module can provide right
The configuration of resource and authority distribution function.In order to realize dynamic user-privilege management, these configurations are required to accomplish
Dynamic load and management can be carried out, specifically include: provide system manager that system resource is safeguarded,
Including to the increase of resource information, delete, revise and inquire about.The information of resource includes: resource name,
The URL of resource, affiliated application module, classification (page/operation/navigation menu);Existing system is provided
Source carries out authority distribution, and safeguards the already present authority relations of distribution;Complete the dimension of authority distribution
After protecting, authority allocation rule can dynamic load, it is not necessary to restarting whole application system can come into force.
Role Management module 102, for role of manager's information, distributes making of corresponding resource for target roles
Use authority;
Described Role Information comprises the steps that relation etc. between role's title and role, and between described role, relation can be wrapped
Include inheritance and mutex relation etc., by inheriting other roles, thus automatically have and inherited role's
Attribute and authority, mutually exclusive roles is not simultaneously in active state, and Role Management module is system administration
Member provides the maintenance management function of system actor, specifically includes: provide to the increase of system actor information,
Delete, search and the operation such as amendment, it is possible to carry out the appointment of role for system user, and to already present
Role assignment is safeguarded, it is provided that the succession of role, can safeguard inheritance.Application system is put down
Platform can built-in super administrator role, this role has system authority at the highest level, can be that service application is entered
Row role and authority distribution, each service application can provide following role: application management person: belonging to having
Authority at the highest level in the range of application module, it is possible to carry out role and authority in the range of affiliated service application
Distribution;Generic access person: there are the access personnel of read-only authority, it is impossible to carry out authority distribution.Can not visit
The person of asking: the personnel of affiliated application module denied access, i.e. blacklist personnel.
User management module 103, for managing user information, associates the role of correspondence for targeted customer.
Described user profile comprises the steps that account name, name, password, account status and nearest login time
Deng.User management module can to the maintenance management of system user information, including system user registration, delete
Remove, search and the amendment etc. of user basic information.Wherein user name can use the employee number that company is unified,
In must managing with establishment officer during each system user registration, personal information is associated, can be according to specifying
User carries out role assignment, and can check the appointment all roles being assigned of user, and to already present angle
Look is assigned and is safeguarded.
A kind of power system resource Rights Management System that application the present embodiment provides, including resource management mould
Block, is used for managing resource information, Role Management module, for role of manager's information, divides for target roles
The use authority of the resource that pairing is answered, user management module, for managing user information, for targeted customer
The role that association is corresponding, is reduced to associating and role and the pass of user of authority and role by the management of system
Connection, flexibly, the efficiency of management is higher in authority distribution.
Embodiment two:
Fig. 2 shows the structural representation of power system resource Rights Management System embodiment two of the present invention,
Corresponding to Fig. 1, also include:
Personnel information management module 104, for administrative staff's information, determines personnel's letter that targeted customer is corresponding
Breath;
Organization and administration module 105, for setting up tissue, management tissue letter according to the relation between personal information
Breath;
Personnel information management module provides the maintenance management to personal information, including increasing, delete, revising
Operate with inquiry etc..The information of personnel can include name, sex, post, contact method, affiliated tissue
Deng, it is provided that search and attendant's information with the tree structure of organisational level, including offer personnel and tissue
The association of information is safeguarded, can add or delete personal information, or personnel moved under specified tissue
Under specified tissue, it is provided that the association between personal information and system user is safeguarded, each system user
Associate a personal information record, it is possible to this incidence relation is safeguarded, only system manager's tool
Having the maintenance authority of all personal informations, domestic consumer only has checks authority, can according to institutional framework and
Personnel assignment information, provides a complete level name for each system user, such as: organize 1/ organizational unit
2/ organizational unit 3/ mountain.
Organization and administration module provides the maintenance management to organizational information, including increasing, delete, revise and looking into
Ask etc. operation, organizational information comprise the steps that organization name, the level of tissue, parent organization, subordinate organization,
The information such as tissue coding, can support that the other organizational hierarchy of arbitrary number of level is arranged, it is provided that the shift function of tissue,
And this tissue subordinate staff's information correct and complete after ensureing to migrate, only system manager has tissue
The maintenance authority of data, domestic consumer only has checks authority.
Group management module 106, for setting up group, group information management for the personnel that role is identical.
Group management module provides the maintenance management to group information, including increasing, delete, revise and looking into
The operations such as inquiry, the information of group includes title, comprises the information such as personnel and group;Support the nesting of group,
But need to specify the deepest nested number of plies, support the inspection to group's nesting endless loop, system should be supported to adopt simultaneously
Personnel belonging to group are set with wildcarding, save as " our department of provincial electric power company/O&M maintenance portion/* " represents
Company O&M maintenance subordinate belongs to all personnel, and this will be further reduced configuration workload, only system administration
Member has the maintenance authority of group information, and domestic consumer only has checks authority.
The present embodiment may also include display module, for having use according to default template for displaying targeted customer
The resource information of authority, can be that each user provides application to access homepage, according to priority assignation situation, often
The homepage of individual user is only shown the business function allowing this user to access, when keeper redistributes user
After authority, in user's default homepage, corresponding service is shown and will be adjusted, and user can be on the workbench page
Check the attribute of business, mainly include the priority assignation situation that business is relevant, if this user has management
Authority, can carry out role and add and user's appointment, and the layout of customized homepage can be selected by user,
System can provide multiple layout type, the layout type that user selectes using as user personalizing parameters it
One, can safeguard with oneself.User can arrange, in selected layout, the content group needing to show
Part, the resource that each service application can configure as showing (can be by managing in application permission module
Reason person configures), if user has the access rights of these resources, i.e. may select and be placed into individual
In people's homepage.Content components in personal homepage can be safeguarded by user, including increasing or deleting, with
Time also can pull the position adjusting each content components in the page, after user setup completes customized homepage,
During login system, acquiescence is opened this page.
It should be noted that each embodiment in this specification all uses the mode gone forward one by one to describe, each
What embodiment stressed is all the difference with other embodiments, identical similar between each embodiment
Part see mutually.
Finally, in addition it is also necessary to explanation, in this article, the relational terms of such as first and second or the like
It is used merely to separate an entity or operation with another entity or operating space, and not necessarily requires
Or imply relation or the order that there is any this reality between these entities or operation.And, art
Language " includes ", " comprising " or its any other variant are intended to comprising of nonexcludability, thus
Make to include that the process of a series of key element, method, article or equipment not only include those key elements, and
Also include other key elements being not expressly set out, or also include for this process, method, article or
The key element that person's equipment is intrinsic.In the case of there is no more restriction, by statement " including ... "
The key element limited, it is not excluded that also deposit in including the process of described key element, method, article or equipment
At other identical element.
Above system provided by the present invention is described in detail, specific case pair used herein
Principle and the embodiment of the present invention are set forth, and the explanation of above example is only intended to help to understand
The method of the present invention and core concept thereof;Simultaneously for one of ordinary skill in the art, according to this
Bright thought, the most all will change, in sum, and this theory
Bright book content should not be construed as limitation of the present invention.
Claims (10)
1. a power system resource Rights Management System, it is characterised in that including:
Resource management module, is used for managing resource information;
Role Management module, for role of manager's information, for the use of the resource of target roles distribution correspondence
Authority;
User management module, for managing user information, associates the role of correspondence for targeted customer.
Power system resource Rights Management System the most according to claim 1, it is characterised in that institute
State resource information to include: resource name and the URL of resource.
Power system resource Rights Management System the most according to claim 1, it is characterised in that institute
State Role Information to include:
Relation between role's title and role.
Power system resource Rights Management System the most according to claim 3, it is characterised in that institute
Relation between role of stating includes inheritance and mutex relation.
Power system resource Rights Management System the most according to claim 1, it is characterised in that institute
State user profile to include:
Account name, name, password, account status and nearest login time.
Power system resource Rights Management System the most according to claim 1, it is characterised in that also
Including:
Personnel information management module, for administrative staff's information, determines the personal information that targeted customer is corresponding.
Power system resource Rights Management System the most according to claim 6, it is characterised in that also
Including:
Organization and administration module, for setting up tissue according to the relation between personal information, manages organizational information.
Power system resource Rights Management System the most according to claim 7, it is characterised in that institute
State personal information to include:
Sex, name, post, contact method and affiliated tissue.
Power system resource Rights Management System the most according to claim 7, it is characterised in that institute
State organizational information to include:
Organization name, organizational hierarchy and tissue coding.
Power system resource Rights Management System the most according to claim 6, it is characterised in that
Also include:
Group management module, for setting up group, group information management for the personnel that role is identical.
Priority Applications (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610236998.4A CN105930741A (en) | 2016-04-14 | 2016-04-14 | Power system resource permission management system |
Applications Claiming Priority (1)
Application Number | Priority Date | Filing Date | Title |
---|---|---|---|
CN201610236998.4A CN105930741A (en) | 2016-04-14 | 2016-04-14 | Power system resource permission management system |
Publications (1)
Publication Number | Publication Date |
---|---|
CN105930741A true CN105930741A (en) | 2016-09-07 |
Family
ID=56839108
Family Applications (1)
Application Number | Title | Priority Date | Filing Date |
---|---|---|---|
CN201610236998.4A Pending CN105930741A (en) | 2016-04-14 | 2016-04-14 | Power system resource permission management system |
Country Status (1)
Country | Link |
---|---|
CN (1) | CN105930741A (en) |
Cited By (5)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109948350A (en) * | 2019-01-18 | 2019-06-28 | 深圳市万睿智能科技有限公司 | A kind of hierarchical organization structure account authority distributing method and its system and storage medium |
CN110348184A (en) * | 2019-05-28 | 2019-10-18 | 石化盈科信息技术有限责任公司 | Permission resource allocation method, system and storage medium based on industrial cloud |
CN110363012A (en) * | 2019-05-28 | 2019-10-22 | 石化盈科信息技术有限责任公司 | Method, permission system and the storage medium of authority configuration are carried out to permission resource |
CN112733162A (en) * | 2020-12-31 | 2021-04-30 | 北京乐学帮网络技术有限公司 | Resource allocation method, device, computer equipment and storage medium |
CN113256250A (en) * | 2021-05-20 | 2021-08-13 | 温州华苍电子科技有限公司 | Operation support management system for cloud platform of circular weaving machine |
Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101226615A (en) * | 2008-02-03 | 2008-07-23 | 北京航空航天大学 | Business events process synergic modeling method based on role authority control |
CN101447135A (en) * | 2008-12-30 | 2009-06-03 | 河北省电力公司超高压输变电分公司 | Realization method of distance education and training system for staff of electric power enterprises |
CN104573478A (en) * | 2014-11-20 | 2015-04-29 | 深圳市远行科技有限公司 | User authority management system of Web application |
-
2016
- 2016-04-14 CN CN201610236998.4A patent/CN105930741A/en active Pending
Patent Citations (3)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN101226615A (en) * | 2008-02-03 | 2008-07-23 | 北京航空航天大学 | Business events process synergic modeling method based on role authority control |
CN101447135A (en) * | 2008-12-30 | 2009-06-03 | 河北省电力公司超高压输变电分公司 | Realization method of distance education and training system for staff of electric power enterprises |
CN104573478A (en) * | 2014-11-20 | 2015-04-29 | 深圳市远行科技有限公司 | User authority management system of Web application |
Cited By (6)
Publication number | Priority date | Publication date | Assignee | Title |
---|---|---|---|---|
CN109948350A (en) * | 2019-01-18 | 2019-06-28 | 深圳市万睿智能科技有限公司 | A kind of hierarchical organization structure account authority distributing method and its system and storage medium |
CN110348184A (en) * | 2019-05-28 | 2019-10-18 | 石化盈科信息技术有限责任公司 | Permission resource allocation method, system and storage medium based on industrial cloud |
CN110363012A (en) * | 2019-05-28 | 2019-10-22 | 石化盈科信息技术有限责任公司 | Method, permission system and the storage medium of authority configuration are carried out to permission resource |
CN110348184B (en) * | 2019-05-28 | 2021-04-06 | 石化盈科信息技术有限责任公司 | Industrial cloud-based permission resource configuration method, system and storage medium |
CN112733162A (en) * | 2020-12-31 | 2021-04-30 | 北京乐学帮网络技术有限公司 | Resource allocation method, device, computer equipment and storage medium |
CN113256250A (en) * | 2021-05-20 | 2021-08-13 | 温州华苍电子科技有限公司 | Operation support management system for cloud platform of circular weaving machine |
Similar Documents
Publication | Publication Date | Title |
---|---|---|
EP2510466B1 (en) | Delegated and restricted asset-based permissions management for co-location facilities | |
CN100375971C (en) | System and method for hierarchical layout specialization | |
CN105930741A (en) | Power system resource permission management system | |
CN110443010A (en) | One kind permission visual configuration control method, device, terminal and storage medium in information system | |
Bolchini et al. | And what can context do for data? | |
EP2116954A1 (en) | Apparatus and method for accessing data in a multi-tenant database according to a trust hierarchy | |
Wahab et al. | An integrative framework of COBIT and TOGAF for designing IT governance in local government | |
CN102053969A (en) | Web ERP (enterprise resource planning) user right management system | |
US11516203B2 (en) | System and method for identity management of cloud based computing services in identity management artificial intelligence systems | |
CN101539855A (en) | Service basic software platform | |
US20120203705A1 (en) | System And Method For Universal In-Place Lifecycle Policy Enforcement On Repositories | |
Waring et al. | Healthcare identities at the crossroads of service modernisation: the transfer of NHS clinicians to the independent sector? | |
Brandis et al. | Towards a framework for governance architecture management in cloud environments: A semantic perspective | |
CN107679065A (en) | Method for exhibiting data, device and computer-readable recording medium | |
CN105809345A (en) | API (application programming interface) management and virtualization-based service oriented platform and control method | |
Münch et al. | An innovative virtual enterprise approach to agile micro and SME-based collaboration networks | |
CN104331776A (en) | Electric power data application management platform | |
Ibrahim | Temporality, space and technology: time‐space discourses of call centres | |
CN108415988A (en) | A kind of self-defined common search system and method based on level and permission | |
CN104331516B (en) | A kind of contract type management system | |
CN111079131A (en) | Method and system for authorization and control of authority of cross-company service | |
Sun et al. | A RFID-based tracking service of Waste Electrical and Electronic Equipment | |
JP2007272387A (en) | File access authority setting system | |
JP2012160104A (en) | Information sharing system, information sharing method, and program | |
Sanjalawe et al. | An evaluation of identity and access management systems |
Legal Events
Date | Code | Title | Description |
---|---|---|---|
C06 | Publication | ||
PB01 | Publication | ||
C10 | Entry into substantive examination | ||
SE01 | Entry into force of request for substantive examination | ||
WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20160907 |
|
WD01 | Invention patent application deemed withdrawn after publication |