CN106657046A - Configurable fine grit authority control method and device - Google Patents

Configurable fine grit authority control method and device Download PDF

Info

Publication number
CN106657046A
CN106657046A CN201611144665.5A CN201611144665A CN106657046A CN 106657046 A CN106657046 A CN 106657046A CN 201611144665 A CN201611144665 A CN 201611144665A CN 106657046 A CN106657046 A CN 106657046A
Authority
CN
China
Prior art keywords
authority
configuration file
end page
authority information
fine granularity
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Pending
Application number
CN201611144665.5A
Other languages
Chinese (zh)
Inventor
宁晓媛
孟邦耀
崔泽峰
田文宝
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Feihu Information Technology Tianjin Co Ltd
Original Assignee
Feihu Information Technology Tianjin Co Ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Feihu Information Technology Tianjin Co Ltd filed Critical Feihu Information Technology Tianjin Co Ltd
Priority to CN201611144665.5A priority Critical patent/CN106657046A/en
Publication of CN106657046A publication Critical patent/CN106657046A/en
Pending legal-status Critical Current

Links

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/101Access control lists [ACL]
    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L63/00Network architectures or network communication protocols for network security
    • H04L63/10Network architectures or network communication protocols for network security for controlling access to devices or network resources
    • H04L63/102Entity profiles

Abstract

The invention discloses a configurable fine grit authority control method, and the method comprises the steps that a front end page reads a configuration file, and transmits login parameters of a login user to a system background; the system background queries and obtains the corresponding authority information according to the login parameters; the system background processes the authority information, returns the information to the front end page and carries out the specific configuration of control elements in authority according to the returned authority information and the configuration file, wherein the configuration file comprises an authority verification function. The method is simple in use. Only if an authority control configuration file needs to an application system project and an authority verification method is specified in the configuration file, the method can carry out the verification of each to-be-controlled authority element on the front end page through the specific authority verification method and an universal authority management system.

Description

Configurable fine granularity authority control method and device
Technical field
The present invention relates to data communication technology field, more particularly to a kind of configurable fine granularity authority control method and Device.
Background technology
For the access right control method in corporate environment, typically there are three kinds:
1. from principal mode access control method:Base in the current access control module in the most information system of China Originally it is by means of the accesses control list (ACLs) from principal mode access control method.The obvious shortcomings of ACLs mono- are exactly this Control is autonomous, and it can control the direct access of main object, but can not control the dereference of main object, because This brings serious safety problem.
2. pressure type access control method:For the Military Application of multi-level level of security.
3. access control based roles method (RBAC), this is that the unified resource of the solution large enterprise for generally acknowledging at present is visited Ask the effective ways of control.The control method can reduce the complexity of empowerment management, reduce administration overhead, neatly support enterprise Security strategy, and the change to enterprise has very big retractility.
The video class such as Sohu's video website or other kinds of website can correspond to different application systems, such as Sohu's video Background system etc. is thrown in built-in system, such as Sohu's video data digging system, Sohu's video statistics analysis system, game, often Plant application system and typically all adopt access control based roles method (RBAC), it can all be related to asking for user authority management Topic.The rights management of every kind of application system can all have different demands, and some application systems only need to control the read-write power of user Limit, some application systems need to control menu that user can check, etc..
This results in the demand for different application systems to authority, it is necessary to develop corresponding permission system to do authority Control.In prior art, security permission Governance framework is typically combined closely using Spring Security and Spring, but Spring Security are excessively thick and heavy, combined with Spring too closely, underaction, and control of authority general control is at some On the page, Control granularity is excessive, and the control of front end page is also to be directly anchored in source code, when demand is changed just Code must be remodified, is recompilated.And there is Control granularity if using Apache Shiro and fix, needs are integrated in should With in system, such as the authority control method of mis systems belongs to a module of system.
The content of the invention
The purpose of the present invention is to be directed to technological deficiency present in prior art, and provides a kind of configurable fine granularity power Limit control method and device, only need to add corresponding configuration file just can realize carrying out authority control to different application systems System.
To realize that the technical scheme that the purpose of the present invention is adopted is:
A kind of configurable fine granularity authority control method, including,
Front end page reads configuration file and the login parameters of login user is transferred to into system background;
Corresponding authority information is inquired about and obtained to system background according to login parameters;
System background processing authority information simultaneously returns front end page,
The concrete configuration of control element in authority, institute are carried out according to authority information and configuration file is returned according to front end page Authority Verification function is included in the configuration file stated.
Preferably, described front end page calls permissions list interface and incoming described login ginseng by POST modes Number, described login parameters include user id, password and application system id.
Preferably, described system background is assembled into SQL statement and goes in mysql databases to inquire about and obtain according to login parameters Weighting limit information list.
Preferably, front end page selects bootstrap+jsp, and configuration file is .tlb files, and described system background will Authority information splices, converts series into the data of JSON forms and return to front end.
Preferably, system background is SpringMVC+Spring+Hibernate conformable frames.
A kind of configurable fine granularity authority control system, including,
Transport module, configuration file is read and to by the login parameters of login user in front end page for front end page It is transferred to system background;
Authority inquires about acquisition module, for inquiring about according to login parameters and obtains corresponding authority information;
Authority information processing module, for processing authority information and returns front end page,
Permission configuration module, for control unit in the authority that front end page is carried out according to return authority information and configuration file The concrete configuration of element, includes Authority Verification function in described configuration file.
Preferably, also including permissions list interface, described login parameters transport module is called described by POST modes Permissions list interface and incoming described login parameters, described login parameters include user id, password and application system id.
Preferably, authority inquiry acquisition module is assembled into SQL statement and goes in mysql databases to inquire about simultaneously according to login parameters Obtain authority information.
Preferably, described front end page selects bootstrap+jsp, and configuration file is .tlb files, and authority information adds Authority information is spliced, converts series into the data of JSON forms and return to front end by work module.
Preferably, system background includes that authority inquires about acquisition module and authority information processing module, described system background For SpringMVC+Spring+Hibernate conformable frames.
Compared with prior art, the invention has the beneficial effects as follows:
The method of the present invention using fairly simple, by developing a general Rights Management System, it is only necessary in application Add the configuration file of control of authority in system engineering, and the method that Authority Verification is specified in configuration file, in front end page It is upper to carry out method validation by specified power verification method for each authority element to be controlled.By calling user Rights interface has permission obtaining user, has accomplished that authority is separated with application system, without covering permission system overlapping development more, Reduce developer's workload.
Description of the drawings
Fig. 1 show the configurable fine granularity authority control method of the present invention and the structural representation of device.
Specific embodiment
The present invention is described in further detail below in conjunction with the drawings and specific embodiments.It should be appreciated that described herein Specific embodiment only to explain the present invention, be not intended to limit the present invention.
As illustrated, the configurable fine granularity authority control method of the present invention includes,
Step 101, front end page reads configuration file and the login parameters of login user is transferred to into system background;
Wherein, configuration file is configured at application system end, and it is to call permissions list to connect that front end page reads configuration file Before mouthful.Described front end page calls permissions list interface and incoming described login parameters by POST modes, described Login parameters include user id, password and application system id etc..Described calls permissions list interface to write in advance, according to not Same system or front end page can carry out adaptability configuration, i.e., authority is carried out in the way of WebAPI and is called, and calling interface is only Return permissions list.The form read using application system preset configuration file, front end page, configuration facility is realized simple.
Application programming interfaces:API (Application Programming Interface), is software systems difference group Into the special agreement that data exchange is completed between part.Complicated system can be divided into functional independence, convenient pipe using API The junior unit of reason, can reduce programming difficulty and maintenance cost, the degree of coupling between reduction system, and then improve system Maintainability and autgmentability.Conventional API is assisted using http protocol, udp protocol, File Transfer Protocol etc., emphasis of the present invention for HTTP The API of view.
URL:URL (Uniform/Universal Resource Locator), is standard on internet Resource address, the URL of HTTP is made up of five basic elements, such as<Transportation protocol><Main frame>:<Port>/<Path><Ginseng Number>.One typical URL is such:http://dc.m.tv.sohuno.com:80/dc-auth/auth.jsonuid =1381522
&username=wangziran&systemId=2
Wherein:
1, transportation protocol:http://
2, main frame:dc.m.tv.sohuno.com
3, port:80 (because 80 is default value, usually can dispense)
4, path:/dc-auth/dmUserPrivilege/
5, parameter:Uid=1381522&username=wangziran&systemId=2 (the forms ginsengs of GET patterns Number, with "" character is starting point, each parameter separates with " & ", then separates parameter name and data with "=", generally with UTF8's URL is encoded, and avoids the problem of character conflict.Post is a kind of request for submitting data to server, and the parameter of POST patterns is straight Connect when variable is submitted to.
Corresponding authority information is inquired about and obtained to step 102, system background according to login parameters;
In this step, described system background is assembled into SQL statement and goes in mysql databases to inquire about according to login parameters And authority information is obtained, and first data are inquired about from database herein, then the data that these are inquired are entered in the next step Row is processed.Increase this step be in order to user oneself is inquired about from mysql databases, processing data the step of make system automatically complete Into, the operating burden of user is reduced, time cost is saved, improve efficiency.
Step 103, system background processing authority information simultaneously returns front end page, and specifically, system background will be inquired Authority information splicing, conversion, such as sequence chemical conversion predetermined format, the data of JSON forms, return to front end page.
Step 104, front end page is according to returning predetermined format, such as JSON forms, according to the authority information included in data List and configuration file carry out the concrete configuration of control element in authority, and Authority Verification function is included in described configuration file. That is, operation is shown by specific control element in Authority Verification function verifying authorization in configuration file or hides operation, configuration File can be verified and be controlled to each control element, realize fine-grained control element configuration.
Wherein, comprising different Authority Verification functions are write according to different application systems in configuration file, to judge Authority element in permissions list is in control front end show or hide.Configuration file is by application system development person and permission system Developer arranges, and method for verifying authority can be realized by kinds of schemes, such as provides a public java class and judges, by what is arranged Label is introduced and then checking and output result.In addition, application system development person can also be without, with the class for providing, oneself developing corresponding Method judged that flexibly and be easy to extension, with very strong system adaptation, only need to add corresponding configuration file can To realize carrying out control of authority to different application systems.
The present invention calls permissions list data in front end page by way of interface, comprising various in permissions list data The control element of concrete configuration is needed, each control element will again receive the verification that function is verified in configuration file with certainly Fixed final show or hide, and then reach fine granularity control of authority.And for different application systems, without the need for changing system In prefabricated permissions list, it is only necessary to change configuration file, you can realize the complete authority of corresponding front end page control element Control, greatly reduces development cost.So for different application systems same system ID may be characterized as different control authorities, Improve control fine granularity, the overall control order of optimization.
The invention also discloses a kind of configurable fine granularity authority control system, including,
Transport module, for reading from system configuration file is called, and for login user in front end page to be stepped on Record parameter is transferred to system background;
Authority inquires about acquisition module, for inquiring about according to login parameters and obtains corresponding authority information;Such as, authority inquiry Acquisition module is assembled into SQL statement and goes in mysql databases to inquire about and obtain authority information according to login parameters.
Authority information processing module, for processing authority information and returns front end page,
Permission configuration module, for being carried out in the authority of front end page according to the configuration file for returning authority information and reading The concrete configuration of control element, includes Authority Verification function in described configuration file.
Meanwhile, also including permissions list interface, described login parameters transport module is called described by POST modes Permissions list interface and incoming described login parameters, described login parameters include user id, password and application system id.
Wherein, described front end page selects bootstrap+jsp, and configuration file is .tlb files, and authority information is processed Authority information is spliced, converts series into the data of JSON forms and return to front end by module, and system background includes that authority is inquired about Acquisition module and authority information processing module, described system background is that SpringMVC+Spring+Hibernate integrates frame Frame.
Front end page selects bootstrap+jsp, and configuration file is .tlb files, and described system background is by authority information Splice, convert series into the data of JSON forms and return to front end.System background is Spring MVC+Spring+ Hibernate conformable frames, bootstrap:Bootstrap is the work of increasing income for being used for front end exploitation that Twitter is released Tool bag.It is developed cooperatively by the designer Mark Otto and Jacob Thornton of Twitter, is a CSS/HTML framework. At present, Bootstrap latest editions are 3.0.
springMVC:Spring MVC belong to the subsequent product of SpringFrameWork, fused in Spring Web Flow the insides.Spring frameworks provide the global function MVC module for building web application.Can be inserted into using Spring MVC frameworks, so as to using Spring carry out WEB develop when, can select use Spring SpringMVC frameworks or collection Into other MVC Development Frameworks, such as Struts1, Struts2 etc..
Hibernate is the Object Relation Mapping framework of an open source code, and it has carried out very lightweight to JDBC Object encapsulation, POJO and database table are set up mapping relations by it, are a full automatic orm frameworks, and hibernate can be with SQL statement is automatically generated, is performed automatically so that java applet person can manipulate number with arbitrary using object Program Thought According to storehouse.Hibernate can apply the occasion in any use JDBC, both can use in the client-side program of Java, also may be used So that used in the Web of Servlet/JSP applications, Hibernate can replace CMP in the J2EE frameworks using EJB, complete The important task of data persistence.
spring:Spring is an Open Framework, and Spring is that the Java of the lightweight risen in 2003 is opened Framework is sent out, is created by Rod Johnson.In simple terms, Spring is a JavaSE/EEfull-stack (stations of a layering Formula) lightweight open source framework.
JSON (JavaScript Object Notation) is a kind of data interchange format of lightweight.It is based on The a subset of ECMAScript.JSON is adopted and is totally independent of the text formatting of language, but be also using similar to C language The custom (including C, C++, C#, Java, JavaScript, Perl, Python etc.) of family.These characteristics make JSON become preferable Data interchange language.It is easy to people to read and write, while being also easy to machine parsing and generating, is generally used for lifting network transmission Speed.
System uses the Technical Architecture of Spring+Spring MVC+Hibernate.Add in engineering The configuration file of AuthVerify.tld, needs to configure the method for verifying authority for calling in configuration file.Front end page is with POST Mode call Web Api transmission user relevant parameter, system background receives the required parameter of user, and according to these Parameter goes in permission system database the associated rights for inquiring about user, and then with the return of Json data, front end can receive return The Json data of user right list are contained, used in JSP (<c:If test=" $ { authVerify: IsValid (auth, ' tvmvideo.clientData')==true } "><Liclass='current'>Client data </li></c:if>) carry out the checking of control authority, wherein ' auth ' is the user profile to be verified, ' tvmvideo.clientData ' is the corresponding code of ' client data ' menu, and when verifying the user ' client is checked Data ' menu authority.The method is that one kind carries out control of authority by configuration file, it is possible to accomplish the control of any granularity System.
The advantage of the framework is that permission system is completely separated with application system, when having new application system to need exploitation, Permission system need to only develop corresponding excuse, and application system only needs to do corresponding configuration for authority.
The above is only the preferred embodiment of the present invention, it is noted that for the common skill of the art For art personnel, under the premise without departing from the principles of the invention, some improvements and modifications can also be made, these improvements and modifications Also should be regarded as protection scope of the present invention.

Claims (10)

1. a kind of configurable fine granularity authority control method, it is characterised in that include,
Front end page reads configuration file and the login parameters of login user is transferred to into system background;
Corresponding authority information is inquired about and obtained to system background according to login parameters;
System background processing authority information simultaneously returns front end page,
The concrete configuration of control element in authority is carried out according to authority information and configuration file is returned according to front end page, it is described Authority Verification function is included in configuration file.
2. configurable fine granularity authority control method as claimed in claim 1, it is characterised in that described front end page is led to Crossing POST modes calls permissions list interface and incoming described login parameters, described login parameters to include user id, password With application system id.
3. configurable fine granularity authority control method as claimed in claim 1, it is characterised in that described system background root SQL statement is assembled into according to login parameters to go in mysql databases to inquire about and obtain authority information list.
4. configurable fine granularity authority control method as claimed in claim 1, it is characterised in that front end page is selected Bootstrap+jsp, configuration file is .tlb files, and described system background is serial into JSON by authority information splicing, conversion The data of form simultaneously return to front end.
5. configurable fine granularity authority control method as claimed in claim 1, it is characterised in that system background is SpringMVC+Spring+Hibernate conformable frames.
6. a kind of configurable fine granularity authority control system, it is characterised in that include,
Transport module, configuration file is read and the login parameters of login user in front end page to be transmitted for front end page To system background;
Authority inquires about acquisition module, for inquiring about according to login parameters and obtains corresponding authority information;
Authority information processing module, for processing authority information and returns front end page,
Permission configuration module, for control element in the authority that front end page is carried out according to return authority information and configuration file Concrete configuration, includes Authority Verification function in described configuration file.
7. fine granularity authority control system as claimed in claim 6, it is characterised in that described also including permissions list interface Login parameters transport module described permissions list interface and incoming described login parameters are called by POST modes, it is described Login parameters include user id, password and application system id.
8. fine granularity authority control system as claimed in claim 6, it is characterised in that authority inquires about acquisition module according to login Parameter is assembled into SQL statement and goes in mysql databases to inquire about and obtain authority information.
9. fine granularity authority control system as claimed in claim 6, it is characterised in that described front end page is selected Bootstrap+jsp, configuration file be .tlb files, authority information processing module by authority information splice, conversion series into The data of JSON forms simultaneously return to front end.
10. fine granularity authority control system as claimed in claim 6, it is characterised in that system background includes that authority inquiry is obtained Delivery block and authority information processing module, described system background is SpringMVC+Spring+Hibernate conformable frames.
CN201611144665.5A 2016-12-13 2016-12-13 Configurable fine grit authority control method and device Pending CN106657046A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201611144665.5A CN106657046A (en) 2016-12-13 2016-12-13 Configurable fine grit authority control method and device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201611144665.5A CN106657046A (en) 2016-12-13 2016-12-13 Configurable fine grit authority control method and device

Publications (1)

Publication Number Publication Date
CN106657046A true CN106657046A (en) 2017-05-10

Family

ID=58825283

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201611144665.5A Pending CN106657046A (en) 2016-12-13 2016-12-13 Configurable fine grit authority control method and device

Country Status (1)

Country Link
CN (1) CN106657046A (en)

Cited By (13)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108304731A (en) * 2017-12-21 2018-07-20 山东浪潮云服务信息科技有限公司 A kind of method, system and information processing platform that management business data calls
CN108566433A (en) * 2018-05-03 2018-09-21 珠海横琴盛达兆业科技投资有限公司 A method of the SSM systems realization being integrated with Shiro rights managements is locally configured
CN109308408A (en) * 2018-08-17 2019-02-05 东莞数汇大数据有限公司 A kind of dynamically configurable authorization check method, system, device and storage medium
CN109409048A (en) * 2018-10-09 2019-03-01 郑州云海信息技术有限公司 A kind of system and method for realizing page fining permission control
CN109472119A (en) * 2018-10-18 2019-03-15 国云科技股份有限公司 Simplify the method for front and back end lock out operation permission multi level control based on Vue
CN109522707A (en) * 2018-10-30 2019-03-26 珠海伟诚科技股份有限公司 A kind of the user data read-write security permission control method and system of based role and resource
CN109688120A (en) * 2018-12-14 2019-04-26 浙江大学 Based on the dynamic permission management system for improving RBAC model and Spring Security frame
CN109740379A (en) * 2019-01-03 2019-05-10 山东浪潮通软信息科技有限公司 A kind of front end authority control method
CN110502912A (en) * 2019-08-19 2019-11-26 四川长虹电器股份有限公司 A kind of front end permission route control method
CN110889126A (en) * 2019-11-25 2020-03-17 杭州安恒信息技术股份有限公司 Optimized Web application permission control method
CN111709050A (en) * 2020-05-21 2020-09-25 四川虹美智能科技有限公司 Method and device for initializing permission configuration parameters
CN111917762A (en) * 2020-07-28 2020-11-10 银盛支付服务股份有限公司 Authority authentication solution method and system for front-end and back-end separation management systems
CN115118480A (en) * 2022-06-22 2022-09-27 中电信数智科技有限公司 Skyline system weight-sharing domain-dividing function realization method and device based on Openstack

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101833714A (en) * 2010-06-12 2010-09-15 山东中创软件工程股份有限公司 Method, device and system for controlling power of examination and approval
CN103634271A (en) * 2012-08-21 2014-03-12 腾讯科技(深圳)有限公司 An authority control system, an apparatus and an authority control method for a network request
CN103870727A (en) * 2012-12-17 2014-06-18 百度在线网络技术(北京)有限公司 Unified authority management method and system
CN104732123A (en) * 2015-03-24 2015-06-24 浪潮集团有限公司 Function operation authority control method based on JSON format
CN105227560A (en) * 2015-10-14 2016-01-06 浪潮集团有限公司 A kind of method of control of authority and device
US9455980B2 (en) * 2014-12-16 2016-09-27 Fortinet, Inc. Management of certificate authority (CA) certificates

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101833714A (en) * 2010-06-12 2010-09-15 山东中创软件工程股份有限公司 Method, device and system for controlling power of examination and approval
CN103634271A (en) * 2012-08-21 2014-03-12 腾讯科技(深圳)有限公司 An authority control system, an apparatus and an authority control method for a network request
CN103870727A (en) * 2012-12-17 2014-06-18 百度在线网络技术(北京)有限公司 Unified authority management method and system
US9455980B2 (en) * 2014-12-16 2016-09-27 Fortinet, Inc. Management of certificate authority (CA) certificates
CN104732123A (en) * 2015-03-24 2015-06-24 浪潮集团有限公司 Function operation authority control method based on JSON format
CN105227560A (en) * 2015-10-14 2016-01-06 浪潮集团有限公司 A kind of method of control of authority and device

Non-Patent Citations (2)

* Cited by examiner, † Cited by third party
Title
NODE2017: "自定义标签+shiro实现权限细粒度控制", 《CSDN》 *
SHARPEST: "Shiro采用shiro实现登录认证与权限授权管理", 《CNBLOGS》 *

Cited By (16)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN108304731A (en) * 2017-12-21 2018-07-20 山东浪潮云服务信息科技有限公司 A kind of method, system and information processing platform that management business data calls
CN108304731B (en) * 2017-12-21 2021-07-06 浪潮卓数大数据产业发展有限公司 Method and system for managing enterprise data call and information processing platform
CN108566433A (en) * 2018-05-03 2018-09-21 珠海横琴盛达兆业科技投资有限公司 A method of the SSM systems realization being integrated with Shiro rights managements is locally configured
CN109308408A (en) * 2018-08-17 2019-02-05 东莞数汇大数据有限公司 A kind of dynamically configurable authorization check method, system, device and storage medium
CN109409048A (en) * 2018-10-09 2019-03-01 郑州云海信息技术有限公司 A kind of system and method for realizing page fining permission control
CN109472119A (en) * 2018-10-18 2019-03-15 国云科技股份有限公司 Simplify the method for front and back end lock out operation permission multi level control based on Vue
CN109522707A (en) * 2018-10-30 2019-03-26 珠海伟诚科技股份有限公司 A kind of the user data read-write security permission control method and system of based role and resource
CN109688120B (en) * 2018-12-14 2020-11-03 浙江大学 Dynamic authority management system based on improved RBAC model and Spring Security framework
CN109688120A (en) * 2018-12-14 2019-04-26 浙江大学 Based on the dynamic permission management system for improving RBAC model and Spring Security frame
CN109740379A (en) * 2019-01-03 2019-05-10 山东浪潮通软信息科技有限公司 A kind of front end authority control method
CN110502912A (en) * 2019-08-19 2019-11-26 四川长虹电器股份有限公司 A kind of front end permission route control method
CN110889126A (en) * 2019-11-25 2020-03-17 杭州安恒信息技术股份有限公司 Optimized Web application permission control method
CN111709050A (en) * 2020-05-21 2020-09-25 四川虹美智能科技有限公司 Method and device for initializing permission configuration parameters
CN111917762A (en) * 2020-07-28 2020-11-10 银盛支付服务股份有限公司 Authority authentication solution method and system for front-end and back-end separation management systems
CN111917762B (en) * 2020-07-28 2022-11-08 银盛支付服务股份有限公司 Authority authentication solution method and system for front-end and back-end separation management systems
CN115118480A (en) * 2022-06-22 2022-09-27 中电信数智科技有限公司 Skyline system weight-sharing domain-dividing function realization method and device based on Openstack

Similar Documents

Publication Publication Date Title
CN106657046A (en) Configurable fine grit authority control method and device
US11706218B2 (en) Systems and methods for controlling sign-on to web applications
CN103347002B (en) Socialization&#39;s login method, system and device
CN101601033B (en) Generating specialized search results in response to patterned queries
US8375362B1 (en) Wizard for web service search adapter
CN100385398C (en) Application generator
US8504543B1 (en) Automatic API generation for a web application
CN102844756A (en) Computer relational database method and system having role based access control
CN107015996A (en) A kind of resource access method, apparatus and system
CN105872051A (en) Capacity open control service platform in government-enterprise cloud platform
US9769159B2 (en) Cookie optimization
CN101582066A (en) Website system and data exchange method based on same
CN104486357A (en) Method for achieving role-based access control (RBAC) based on SSH website
CN108520019A (en) Data managing method, device, equipment and computer readable storage medium
US7627766B2 (en) System and method for providing java server page security
CN104580081A (en) Integrated SSO (single sign on) system
US20220222330A1 (en) System and method for providing aggregated credentials with assurance levels
JP6510258B2 (en) User attribute information management system and user attribute information management method
US20090158278A1 (en) System, method, and apparatus for multi-channel user interaction
KR20020028297A (en) System for integrated ID management
CN111241504B (en) Identity verification method, device, electronic equipment and storage medium
US20100222022A1 (en) Communication method, communication system and access method to service provider base
US7062489B1 (en) Data management system having remote terminal access utilizing security management by table profiling
EP1197878A1 (en) Method for controlling acess to a data communication network
CN106330839A (en) Account loss report cancelling method and apparatus

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
RJ01 Rejection of invention patent application after publication
RJ01 Rejection of invention patent application after publication

Application publication date: 20170510