CN107292587A - The menu authorization method of based role - Google Patents
The menu authorization method of based role Download PDFInfo
- Publication number
- CN107292587A CN107292587A CN201710526428.3A CN201710526428A CN107292587A CN 107292587 A CN107292587 A CN 107292587A CN 201710526428 A CN201710526428 A CN 201710526428A CN 107292587 A CN107292587 A CN 107292587A
- Authority
- CN
- China
- Prior art keywords
- menu
- role
- authorized
- authority
- user
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06Q—INFORMATION AND COMMUNICATION TECHNOLOGY [ICT] SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES; SYSTEMS OR METHODS SPECIALLY ADAPTED FOR ADMINISTRATIVE, COMMERCIAL, FINANCIAL, MANAGERIAL OR SUPERVISORY PURPOSES, NOT OTHERWISE PROVIDED FOR
- G06Q10/00—Administration; Management
- G06Q10/10—Office automation; Time management
- G06Q10/103—Workflow collaboration or project management
Abstract
The invention discloses a kind of menu authorization method of based role, including:One or more roles are selected as authorized object, each role is independent individual, rather than group/class, same one role of period can only associate unique user, and the one or more roles of user-association;When authorized object is one, shows that the menu that authorized object has been chosen and preserved before this in authority candidate's menu, the authority candidate menu is chosen automatically, corresponding menu is selected from the authority candidate menu;When authorized object is two or more, authority candidate's menu of blank is shown, corresponding menu is selected from the authority candidate menu;Preserve the authority for being authorized to object.Same one role of period can only associate unique user in the present invention, one one or more role of user-association, user obtains menu authority by the role of association, more simple and convenient to the menu authorization of new registration employee or transfer-position employee, improves the efficiency of list mandate.
Description
Technical field
The present invention relates to the list authorization method of the management software systems such as ERP, more particularly to a kind of dish of based role
Single authorization method.
Background technology
Access control based roles(RBAC)Be Recent study at most, a kind of thought most ripe data base authority pipe
Reason mechanism, it is considered as to substitute traditional forced symmetric centralization(MAC)And self contained navigation(DAC)Ideal candidates.Base
In the access control of role(RBAC)Basic thought be to divide different according to different functional post in business organization's view
Role, the access rights of database resource are encapsulated in role, and the user role different by being endowed is come dereference number
According to base resource.
Substantial amounts of table and view are often all had in large-scale application system, this causes management to database resource and awarded
Adaptability in tactics obtains sufficiently complex.The access and receiving and grant for authority that database resource is directly managed by user are very difficult, and it needs
Understanding of the user to database structure is very thorough, and is familiar with the use of sql like language, once and application system structure or peace
Full demand has changed, and will carry out large amount of complex and cumbersome mandate changes, and is very easy to occur some and unexpected awards
Security breaches caused by power error.Therefore, be that large-scale applied system design one kind is simple, efficient right management method into
For system and the common requirements of system user.
The mechanism of authorization control of based role can carry out simple, efficient management to the access rights of system, greatly
The burden and cost of System right management are reduced, and causes System right management to more conform to the service management of application system
Specification.
However, the method for managing user right of traditional based role uses the association machine of " role is one-to-many to user "
System, its " role " is that group/role of class property, i.e., one can correspond to/associate multiple users simultaneously, and role is similar to post/duty
Following three kinds of forms are divided into substantially to the mandate of user right under the concepts such as position/work post, this relation mechanism:
1st, as shown in figure 1, directly being authorized to user, big workload, frequent operation and trouble are had the disadvantage;
2nd, as shown in Fig. 2 to role(Class/group/post/work post property)Authorized(One role can associate multiple use
Family), user obtains authority by role;
3rd, as shown in figure 3, both the above mode is combined.
In statement above, 2,3 are required to authorize the role of class/group property, and pass through class/group/post/work post
The mode that the role of property is authorized has the disadvantage that:
1st, operation when user right changes is difficult:During actual system use, often because being needed during operation
Authority to user is adjusted, such as:When the change of employee's authority is handled, the authority hair of some employee of role association
Changing, we can not change the authority of whole role because of the change of indivedual employee's authorities, because the role is also associated with
The unchanged employee of other authorities.Therefore in order to tackle this kind of situation, otherwise create what new role changed to meet the authority
Employee, otherwise the employee is directly authorized according to authority demand(Depart from role).Both the above processing mode, role-security compared with
To role authorization, not only required time is grown in the case of many, and easily makes a mistake, and user operates cumbersome and bothered, and also holds
It is error-prone to cause the loss to system user.
2nd, to remember that the concrete power limit that role includes is difficult for a long time:If the privilege feature point of role is relatively more, the time one is grown, very
Difficulty remembers the concrete power limit of role, it more difficult to remember the authority difference between the close role of authority, to associate new user, nothing
Method accurately judges association how should be selected.
3rd, because user right changes, then role can be caused to create more and more(If not creating new role, can significantly it increase
Plus the mandate directly to user), it more difficult to distinguish the specific difference of each role-security.
4th, during transfer-position, to by many authority distributions of transfer-position user other several users will be given to undertake, then when handling
It must will be made a distinction by these authorities of transfer-position user, create role again respectively to associate other several users, such behaviour
Make not only complicated and time consumption, and also easily making a mistake.
Traditional menu authorization that carried out to employee is directly to carry out menu authorization for each employee, in employee's transfer-position, is needed
Menu authorization is carried out to employee again, when menu is a lot, workload is big, efficiency is low.
The content of the invention
It is an object of the invention to overcome the deficiencies of the prior art and provide a kind of menu authorization method of based role, together
One role of period one can only associate unique user, and the one or more roles of user-association, and user passes through association
Role obtains menu authority, more simple and convenient to the menu authorization of new registration employee or transfer-position employee, improves the effect of list mandate
Rate and reliability.
The purpose of the present invention is achieved through the following technical solutions:The menu authorization method of based role, including:
Selection is authorized to object:Select one or more roles as authorized object, each role is independent individual, rather than
Group/class, same one role of period can only associate unique user, and the one or more roles of user-association;
Menu authorization is carried out to being authorized to object:When authorized object is one, authority candidate's menu is shown, the authority is waited
Select the menu that authorized object has been chosen and preserved before this in menu to choose automatically, select corresponding from the authority candidate menu
Menu;When authorized object is two or more, authority candidate's menu of blank is shown, from the authority candidate menu
Select corresponding menu;
Preserve the authority for being authorized to object.
It is preferred that, when authorized object is one, selection is authorized to after object, shows that this is authorized to object the last
The authorized authorised operator of menu and mandate time.
It is preferred that, selection is authorized to after object, and display in real time is authorized to the quantity selected choices from menus of object.
It is preferred that, selection is authorized to after object, and display in real time is authorized to the content that object has been selected choices from menus.
It is preferred that, the authority candidate menu is shown in the form of arborescence or list.
It is preferred that, when selecting corresponding authority from the authority candidate menu, if a menu is selected, the dish
Single all immediate superior menus are also selected.
It is preferred that, the step of menu authorization method also includes creating role and menu.
It is preferred that, the role must select a department when creating, role role if after creating belongs to this
Department, authorizes according to the action of role to role, and the title of the role is unique under the department, the volume of the role
It is number unique in systems;During the trans-departmental transfer-position of the user, cancel associating for user and the role in former department, by user with newly
Role in department is associated.
It is preferred that, it is the menu setecting Previous Menu newly created when creating non-top level menu.
The menu authorization method of based role, including:
Selection is authorized to object:Select one or more roles as authorized object, each role is independent individual, rather than
Group/class, same one role of period can only associate unique user, and the one or more roles of user-association;
Menu authorization is carried out to being authorized to object:Authority candidate's menu is shown, one existing role of selection or drawing template establishment are made
It is in authority candidate's menu that the existing role or drawing template establishment has been chosen and preserved before this menu is automatic to authorize template
Choose, corresponding menu is selected from the authority candidate menu;
Preserve the authority for being authorized to object.
The beneficial effects of the invention are as follows:
(1)User obtains authority by role, can obtain association role authorized dish during employee's registration after association role
It is single, without individually carrying out menu authorization to new registration employee;The angle associated now by transfer-position employee need to only be cancelled during employee's transfer-position
Color, then be that employee is associated by the new role after transfer-position, employee can obtain the menu of present need of work by new role, without
Individually carry out the menu authorization of new post work again to employee;To adjust employee menu when, only need to adjust employee association
The menu of role;
(2)When being authorized to an authorized object, show that this is authorized to object and chosen when selection is authorized to object
And the menu preserved, it is easy to operator to modify on this basis carry out menu authorization;It can be awarded to two or more
Power object is authorized, and improves that authority is identical or list mandate efficiency of the most of identical batch role of authority;
(3)When authorized object is one, selection is authorized to after object, shows that this is authorized to what object the last time was authorized to
Authorised operator and mandate time, it is easy to be called to account when mistake occurs in the authority of role, and judge whether the angle needs
Authorized;
(4)Choose after authorized object, display in real time is authorized to the quantity selected choices from menus and content of object, is easy to operator
Understand the basic condition for having selected authority for being authorized to object;
(5)Authority candidate's menu is shown using arborescence, is easy to simple and clear the knowing in authority candidate's menu of operator to own
The hierarchical relationship or ownership of menu, are conducive to understanding the functional character of each menu;
(6)Role definition is the properties such as group, work post, class by traditional rights management mechanism, and role is one-to-many pass to user
System, during actual system use, often because needing to be adjusted the authority of user during operation, such as:
When the change of employee's authority is handled, the authority of some employee of role association changes, and we can not be because of indivedual members
The change of work authority and the authority for changing whole role, because the role is also associated with the unchanged employee of other authorities.Therefore it is
This kind of situation of reply, otherwise new role is created to meet the employee that the authority changes, or to the employee according to authority
Demand is directly authorized(Depart from role).Both the above processing mode, in the case where role-security is more to role authorization not only
Required time is long, and easily makes a mistake, and user operates cumbersome and bothered, and also easily error causes to system user's
Loss.
But under the present processes, because role is an independent individual, then it can select to change role-security i.e.
It can reach purpose.The present processes, although seem that workload can be increased in system initialization, but duplication etc. can be passed through
Method, makes it create the efficiency of role or mandate higher than tradition using group as the role of property, because without considering that property is group
Intercommunity of the role when meeting association user, application scheme can allow priority assignation clear, understand;Especially used in system
After a period of time(User/role-security dynamic change), this application scheme can increase substantially system and use for system user
In rights management efficiency, make dynamic authorization simpler, be more convenient, it is apparent, clear, improve the efficiency of priority assignation and reliable
Property.
(7)Role authorization method of the tradition by property of group easily malfunctions, and the application method significantly reduces mandate error
Probability because the application method need to only be considered as the role of independent individual, and without considering to associate the group under conventional method
Which intercommunity multiple users of property role have.Even if error is authorized, also only influence is associated with that user of the role,
And tradition can then influence to be associated with all users of the role with the role of group property.Even if there is permission grant mistake, this Shen
Modification method please is simple, the time is short, and tradition with role's repairing lookup error of group property when need consideration to be associated with the role
All users authority intercommunity, trouble is not only changed in the case of more than function point, complicated, is very easy to error, and very
Can only newly create role in the case of many could solve.
(8)Under role authorization method of the tradition using group as property, if the privilege feature point of role is relatively more, the time one
It is long, it is difficult to remember the concrete power limit of role, it more difficult to remember the authority difference between the close role of authority, to associate new use
Family, it is impossible to accurate to judge association how is selected.The role of the application method inherently has the property of post number/station number
Matter, is selected very clear.
(9)During transfer-position, to by many authority distributions of transfer-position user other several users will be given to undertake, then when handling
It must will be made a distinction by these authorities of transfer-position user, create role again respectively to associate other several users, such behaviour
Make not only complicated and time consumption, and also easily making a mistake.
The application method is then:Several roles by transfer-position user-association, in transfer-position, cancel user and former department first
The association of interior role(These roles being cancelled can be associated to other users again), then by user and new department
Interior role is associated.It is simple to operate, it will not malfunction.
(10), it is necessary to select a department when creating role, completed once the role creates, then department can not be replaced,
Why not role can change department:
Reason 1:Because role's property of the application is equal to a station number/post number, the work in different station number/post number
It is different to make content/authority, and the role of developer 1 of the role of salesman 1 and engineering department under such as sales department have been
Complete two different station number/posies number, its authority is different;
Reason 2:If by the affiliated function of the role of salesman 1(Sales department)Technology department is replaced by, this role's of its sales force 1
Authority is constant, then there is a role for possessing sales department's authority in technology department, can so cause managerial confusion and security breaches.
Brief description of the drawings
Fig. 1 is the direct schematic diagram authorized to user of system in background technology;
The schematic diagram that Fig. 2 is authorized for system in background technology to group/class property role;
Fig. 3 is system of users directly mandate and the schematic diagram being combined to group/class property role authorization in background technology;
Fig. 4 is flow chart of the invention;
Fig. 5 is the schematic diagram for being authorized to authority candidate's menu when object is one in the present invention;
Fig. 6 is the schematic diagram for being authorized to authority candidate's menu when object is two in the present invention;
Fig. 7 is to use in the present invention to authorize template to be authorized to the schematic diagram that object sets menu.
Embodiment
Technical scheme is described in further detail below in conjunction with the accompanying drawings, but protection scope of the present invention is not limited to
It is as described below.
【Embodiment one】As shown in figure 4, the menu authorization method of based role, including:
Selection is authorized to object.Select one or more roles as authorized object, each role is independent individual, rather than
Group/class, same one role of period can only associate unique user, and the one or more roles of user-association.
Selection is authorized to after object, shows that this is authorized to the authorized authorised operator of the last menu of object and mandate
Time.It is authorized to for example, role's first is the last by Zhang San 21 days 11 May in 2015:00 completes, when again for role
When choosing role's first during mandate, then show Zhang San 21 days 11 May in 2015 for this authorised operator:00 is that role's first is entered
The information that row is authorized.
When authorized object is one, selection is authorized to after object, shows that this is authorized to the last menu quilt of object
The authorised operator of mandate and mandate time, it is easy to be called to account when mistake occurs in the authority of role.For example, role's first should not
Possess the authority for checking certain confidential information, but so that role's first, which has, checks the secret after certain is authorized for role's first
The authority of information;During follow-up call to account, can by search the last operator that authorized to role's first come
Find person liable.
Selection is authorized to after object, shows that this is authorized to the authorized authorised operator of the last menu of object and mandate
Time, it is easy to judge whether the angle needs to be authorized.For example, certain operator needs to carry out 100 roles Authorized operation, but
The operator has only completed the Authorized operation of 70 roles on the day of being, the operation of role authorization is continued within second day in the operator
When, the role for needing to authorize can be searched by screening authorised operator or the last menu authorized time.And example
Such as, by checking authorized time the last time of role it is known that the authority of the role has how long does not change,
Whether facilitate deciding on needs again to authorize the role.
Selection is authorized to after object, and display in real time is authorized to the quantity selected choices from menus of object, is easy to operator to understand
It is authorized to the basic condition for having selected menu of object.For example, authority candidate menu includes 30 further menus, 350 two grades of dishes
Single and 3600 three-stage menus;When being authorized for role's first, if having selected 2 further menus, 60 second-level menus and 530
Individual three-stage menu, the then quantity for role's first having been selected into authority is shown as further menu:2/30;Second-level menu:60/350;Three-level
Menu:530/3600.
Selection is authorized to after object, and display in real time is authorized to the content that object has been selected choices from menus, and is easy to operator to understand quilt
The content for having selected menu of authorization object.For example, when have selected 4 second-level menus and 9 three-stage menus for role's first, then by institute
4 second-level menus of selection and the content of 9 three-stage menus are shown.
The step of list authorization method also includes creating role and menu.The role must select one when creating
Department, role role if after creating belongs to the department, and role is authorized according to the action of role, and should
The title of role is unique under the department, and the numbering of the role is unique in systems.The user and can only pass through itself and angle
The association of color defines the competence, employee one user of correspondence, user one employee of correspondence.
The definition of role:Role is without the property such as group/class/classification/post/position/work post, but non-set
Property, role has uniqueness, and role is self-existent independent individual;Equivalent to post number in enterprises and institutions apply
(The non-post in post number herein a, post may have multiple employees simultaneously, and one post number of same period can only correspond to one
Individual employee).
Citing:Following role can be created in some Corporation system:General manager, vice general manager 1, vice general manager 2, Beijing sale
One manager, Beijing sell two managers, Beijing sell three managers, Shanghai sales engineer 1, Shanghai sales engineer 2, on
Extra large sales engineer 3, Shanghai sales engineer 4, Shanghai sales engineer 5 ...
User and the incidence relation of role:The said firm vice general manager 2 if the said firm employee Zhang San holds a post, while Beijing sale of holding a post
One manager, the then role that Zhang San's needs are associated is that a manager is sold in vice general manager 2 and Beijing, and Zhang San has the two angles
The authority of color.
The concept of traditional role is group/class/post/position/work post property, and a role can correspond to multiple users.And
The concept of the application " role " is also analogous to the role in movie and television play equivalent to post number/station number:One role is with for the moment
Section(Childhood, juvenile, middle age ...)It can only be played by a performer, and a performer may divide decorations polygonal.
During the trans-departmental transfer-position of the user, cancel associating for user and the role in former department, by user with new department
Role be associated.Create role after, can create user during association role, can also be created in user
After the completion of be associated at any time.The incidence relation with role can be released after user-association role at any time, can also be set up at any time
With the incidence relation of other roles.
It is the menu setecting Previous Menu newly created when creating non-top level menu;When creating top level menu, need not be then
It selects Previous Menu.If any further menu, second-level menu and three-stage menu, wherein further menu is top level menu, if new wound
When building a second-level menu, then need to select a Previous Menu for the second-level menu of the new establishment;If newly creating an one-level
During menu, then a Previous Menu need not be selected for the further menu of the new establishment.
The top level menu does not have corresponding function or display interface, only corresponding sub-menus;Non- top level menu is then
With corresponding function or display interface.
Menu authorization is carried out to being authorized to object.When authorized object is one, authority candidate's menu, the power are shown
The menu that authorized object has been chosen and preserved before this in limit candidate's menu is chosen automatically, is selected from the authority candidate menu
Corresponding menu, as shown in figure 5, civilian 1(Zhang San)The menu chosen and preserved be OA affairs, OA affairs 1, OA affairs 12,
OA affairs 13, OA affairs 2, OA affairs 21, OA affairs 22, OA affairs 23, upper sub-authorization are 6 days 15 May in 2017 by Zhang San:
00 completes.When authorized object is two or more, authority candidate's menu of blank is shown, i.e., does not choose any menu
Authority candidate's menu, corresponding menu is selected from the authority candidate menu, as shown in fig. 6, have selected civilian 1(Zhang San)With
Civilian 2(Li Si)Two conducts are authorized to object.
When being authorized to an authorized object, this is chosen to be authorized to object automatically when selection is authorized to object
The menu chosen and preserved, is easy to operator to modify on this basis and carries out list mandate.Can be to two or more
It is authorized to object to be authorized, improves that authority is identical or list mandate of the most of identical batch role of authority is imitated
Rate.For example, there is 90% authority of 100 roles identical, 90% identical authority can be awarded by way of batch authorization with first
100 roles are given, then respectively 100 roles are carried out with the mandate of the authority of residue 10% again, the effect of list mandate is improved
Rate.
The authority candidate menu is shown in the form of arborescence or list.Shown using arborescence and be easy to operator
The simple and clear hierarchical relationship or ownership of knowing all menus in authority candidate's menu, is conducive to the function of understanding each menu special
Levy.
When selecting corresponding menu from the authority candidate menu, if menu is selected, the menu it is upper
Level menu is also selected, and is easy to operator to understand the subordinate relation of menu.For example, authority candidate menu include 3 further menus,
6 second-level menus and 15 three-stage menus, after a three-stage menu is selected, then the corresponding second-level menu of the three-stage menu and one
Level menu is also chosen.
It is then the newest of authorized object to preserve the authority now chosen in the authority for being authorized to object, authority candidate's menu
Authority, is authorized to the capped renewal of original authority of object.
When authorized object is one, show authority candidate's menu, be authorized in the authority candidate menu object this
The preceding menu chosen and preserved is chosen automatically, corresponding menu is selected from the authority candidate menu, as shown in figure 5, literary
Member 1(Zhang San)The authority preserved is OA affairs, OA affairs 1, OA affairs 12, OA affairs 13, OA affairs 2, OA affairs 21, OA things
Business 22, OA affairs 23, upper sub-authorization is 6 days 15 May in 2017 by Zhang San:00 completes.When authorized object be two or with
When upper, authority candidate's menu of blank was shown, i.e., authority candidate's menu of any authority is not chosen, from the authority candidate dish
Corresponding menu is selected in list, as shown in fig. 6, have selected civilian 1(Zhang San)With civilian 2(Li Si)Authorized pair of two conducts
As.
【Embodiment two】The menu authorization method of based role, including:
Selection is authorized to object:Select one or more roles as authorized object, each role is independent individual, rather than
Group/class, same one role of period can only associate unique user, and the one or more roles of user-association;
Menu authorization is carried out to being authorized to object:Authority candidate's menu is shown, one existing role of selection or drawing template establishment are made
It is in authority candidate's menu that the existing role or drawing template establishment has been chosen and preserved before this menu is automatic to authorize template
Choose, corresponding menu is selected from the authority candidate menu;As shown in fig. 7, civilian 1(Zhang San)To be authorized to object,
The menu that drawing template establishment 1 has been chosen and preserved before this is chosen automatically in authority candidate's menu;
Preserve the authority for being authorized to object.
Menu authorization method based on template, drawing template establishment is replaced with using the above-mentioned role as authorized object.
Described above is only the preferred embodiment of the present invention, it should be understood that the present invention is not limited to described herein
Form, is not to be taken as the exclusion to other embodiment, and available for various other combinations, modification and environment, and can be at this
In the text contemplated scope, it is modified by the technology or knowledge of above-mentioned teaching or association area.And those skilled in the art are entered
Capable change and change does not depart from the spirit and scope of the present invention, then all should appended claims of the present invention protection domain
It is interior.
Claims (10)
1. the menu authorization method of based role, it is characterised in that including:
Selection is authorized to object:Select one or more roles as authorized object, each role is independent individual, rather than
Group/class, same one role of period can only associate unique user, and the one or more roles of user-association;
Menu authorization is carried out to being authorized to object:When authorized object is one, authority candidate's menu is shown, the authority is waited
Select the menu that authorized object has been chosen and preserved before this in menu to choose automatically, select corresponding from the authority candidate menu
Menu;When authorized object is two or more, authority candidate's menu of blank is shown, from the authority candidate menu
Select corresponding menu;
Preserve the authority for being authorized to object.
2. the menu authorization method of based role according to claim 1, it is characterised in that when authorized object is one
When, selection is authorized to after object, shows that this is authorized to the authorized authorised operator of the last menu of object and mandate time.
3. the menu authorization method of based role according to claim 1, it is characterised in that selection is authorized to after object,
Display is authorized to the quantity selected choices from menus of object in real time.
4. the menu authorization method of based role according to claim 1, it is characterised in that selection is authorized to after object,
Display is authorized to the content that object has been selected choices from menus in real time.
5. the menu authorization method of based role according to claim 1, it is characterised in that the authority candidate menu with
Arborescence or the form of list are shown.
6. the menu authorization method of based role according to claim 1, it is characterised in that from the authority candidate menu
During the corresponding authority of middle selection, if a menu is selected, all immediate superior menus of the menu are also selected.
7. the menu authorization method of based role according to claim 1, it is characterised in that the menu authorization method is also
The step of including creating role and menu.
8. the menu authorization method of based role according to claim 7, it is characterised in that the role is necessary when creating
A department is selected, role role if after creating belongs to the department, role is carried out according to the action of role
Authorize, and the title of the role is unique under the department, the numbering of the role is unique in systems;The trans-departmental transfer-position of user
When, cancellation user is associated with the role's in former department, and user is associated with the role in new department.
9. the menu authorization method of based role according to claim 7, it is characterised in that when creating non-top level menu,
For the menu setecting Previous Menu newly created.
10. the menu authorization method of based role, it is characterised in that including:
Selection is authorized to object:Select one or more roles as authorized object, each role is independent individual, rather than
Group/class, same one role of period can only associate unique user, and the one or more roles of user-association;
Menu authorization is carried out to being authorized to object:Authority candidate's menu is shown, one existing role of selection or drawing template establishment are made
It is in authority candidate's menu that the existing role or drawing template establishment has been chosen and preserved before this menu is automatic to authorize template
Choose, corresponding menu is selected from the authority candidate menu;
Preserve the authority for being authorized to object.
Priority Applications (3)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710526428.3A CN107292587A (en) | 2017-06-30 | 2017-06-30 | The menu authorization method of based role |
| PCT/CN2018/092028 WO2019001322A1 (en) | 2017-06-30 | 2018-06-20 | Role-based menu authorization method |
| CN201810638294.9A CN108830565B (en) | 2017-06-30 | 2018-06-20 | Menu authorization method based on role |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710526428.3A CN107292587A (en) | 2017-06-30 | 2017-06-30 | The menu authorization method of based role |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN107292587A true CN107292587A (en) | 2017-10-24 |
Family
ID=60099226
Family Applications (2)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710526428.3A Pending CN107292587A (en) | 2017-06-30 | 2017-06-30 | The menu authorization method of based role |
| CN201810638294.9A Active CN108830565B (en) | 2017-06-30 | 2018-06-20 | Menu authorization method based on role |
Family Applications After (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201810638294.9A Active CN108830565B (en) | 2017-06-30 | 2018-06-20 | Menu authorization method based on role |
Country Status (2)
| Country | Link |
|---|---|
| CN (2) | CN107292587A (en) |
| WO (1) | WO2019001322A1 (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2019001322A1 (en) * | 2017-06-30 | 2019-01-03 | 成都牵牛草信息技术有限公司 | Role-based menu authorization method |
| CN111177775A (en) * | 2019-12-12 | 2020-05-19 | 远光软件股份有限公司 | Batch setting method and device of user roles, storage medium and electronic equipment |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109918876A (en) | 2019-03-18 | 2019-06-21 | 京东方科技集团股份有限公司 | Permission filter method and permission filter device |
Family Cites Families (12)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN1407452A (en) * | 2001-09-04 | 2003-04-02 | 合肥和谐软件有限公司 | Method for making and carrying out guided ERP program |
| US20070156693A1 (en) * | 2005-11-04 | 2007-07-05 | Microsoft Corporation | Operating system roles |
| CN101299694B (en) * | 2007-04-30 | 2012-04-25 | 华为技术有限公司 | Method and system for managing caller in household network, household gateway |
| CN201111137Y (en) * | 2007-08-24 | 2008-09-03 | 上海全成通信技术有限公司 | Post authoring apparatus |
| CN102004868A (en) * | 2009-09-01 | 2011-04-06 | 上海杉达学院 | Role access control-based information system data storage layer and building method |
| CN101729403A (en) * | 2009-12-10 | 2010-06-09 | 上海电机学院 | Access control method based on attribute and rule |
| CN103870129A (en) * | 2012-12-13 | 2014-06-18 | 阿里巴巴集团控股有限公司 | Data processing method and device for application system cluster |
| CN104392159B (en) * | 2014-12-17 | 2018-02-06 | 中国人民解放军国防科学技术大学 | A kind of user for supporting least privilege authorization method on demand |
| KR101668550B1 (en) * | 2015-01-07 | 2016-10-21 | 충북대학교 산학협력단 | Apparatus and Method for Allocating Role and Permission based on Password |
| CN105184145A (en) * | 2015-08-17 | 2015-12-23 | 深圳中兴网信科技有限公司 | Permission management method and management apparatus |
| CN105653977B (en) * | 2015-12-28 | 2019-07-05 | 上海瀚银信息技术有限公司 | A kind of menu authority configuring method and system |
| CN107292587A (en) * | 2017-06-30 | 2017-10-24 | 成都牵牛草信息技术有限公司 | The menu authorization method of based role |
-
2017
- 2017-06-30 CN CN201710526428.3A patent/CN107292587A/en active Pending
-
2018
- 2018-06-20 CN CN201810638294.9A patent/CN108830565B/en active Active
- 2018-06-20 WO PCT/CN2018/092028 patent/WO2019001322A1/en active Application Filing
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| WO2019001322A1 (en) * | 2017-06-30 | 2019-01-03 | 成都牵牛草信息技术有限公司 | Role-based menu authorization method |
| CN111177775A (en) * | 2019-12-12 | 2020-05-19 | 远光软件股份有限公司 | Batch setting method and device of user roles, storage medium and electronic equipment |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108830565A (en) | 2018-11-16 |
| CN108830565B (en) | 2021-04-06 |
| WO2019001322A1 (en) | 2019-01-03 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107045675A (en) | The method that workflow approval node is set examination & approval role by role | |
| CN107203870A (en) | The method that workflow approval node is examined role by Department formation | |
| CN107180334A (en) | Based role is to the man-to-man Work-flow control method and system of user | |
| CN107315931A (en) | Form field values operating right authorization method | |
| US20200143077A1 (en) | Role acquisition-based method for authorizing form data | |
| CN107103228A (en) | Man-to-man permission grant method and system of the based role to user | |
| CN107301335A (en) | The list operating right authorization method of based role | |
| CN107330344A (en) | A kind of related information authorization method of list | |
| CN107368968A (en) | A kind of system work dispatching method | |
| CN109064138A (en) | Show the authorization method of all system user current entitlement states | |
| CN107370748A (en) | The method to set up of authority is checked in operation note based on the period | |
| CN108921520A (en) | Count list operation permission grant method | |
| CN108711037A (en) | The commission of examination and approval workflow and its recommit method | |
| CN107480948A (en) | Approver is directed to the method that examination & approval task seeks the opinion of advisory opinion | |
| CN107292587A (en) | The menu authorization method of based role | |
| CN108629022A (en) | Based role is generated to the one-to-one organization chart of user and application process | |
| CN108875391A (en) | Employee logs in the permission display methods after its account in system | |
| CN108920940A (en) | The method authorized by field value of third party's field to form fields | |
| CN108985659A (en) | The method that approval process and its approval node authorization are carried out to user | |
| CN108958870A (en) | shortcut function setting method | |
| CN109033861A (en) | The method that authorised operator is authorized in system | |
| CN108875324A (en) | List authorization method based on list time property field | |
| CN107506902A (en) | The management method of issued transaction in management system | |
| CN107480556A (en) | The method authorized respectively to statistics list operation authority based on train value | |
| CN107292144A (en) | The field value-acquiring method of role's property field in list |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| WD01 | Invention patent application deemed withdrawn after publication | ||
| WD01 | Invention patent application deemed withdrawn after publication |
Application publication date: 20171024 |