CN107742066B - Account permission configuration method and device, terminal equipment and computer storage medium - Google Patents
Account permission configuration method and device, terminal equipment and computer storage medium Download PDFInfo
- Publication number
- CN107742066B CN107742066B CN201710846519.5A CN201710846519A CN107742066B CN 107742066 B CN107742066 B CN 107742066B CN 201710846519 A CN201710846519 A CN 201710846519A CN 107742066 B CN107742066 B CN 107742066B
- Authority
- CN
- China
- Prior art keywords
- role
- user
- authority
- account
- permission
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/604—Tools and structures for managing or administering access control systems
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2141—Access rights, e.g. capability lists, access control lists, access tables, access matrices
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- General Physics & Mathematics (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- Software Systems (AREA)
- Computer Hardware Design (AREA)
- Automation & Control Theory (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Storage Device Security (AREA)
Abstract
The invention provides an account permission configuration method, an account permission configuration device, terminal equipment and a computer storage medium, wherein the account permission configuration method comprises the steps of creating a new role in a system according to a role creation instruction input by a user and generating a permission list to be configured; according to the role creation confirmation instruction of the user, storing the newly created role into a role management module so that the newly created role has all the permissions selected by the user in the permission list to be configured; creating a new account number in the system according to an account creation instruction input by a user; selecting a role to be configured according to a role selection instruction input by a user, and storing a newly created account into an account management module; and modifying the role of the specified account according to the account role modification instruction. By the method, the authority of the role can be flexibly set, and by establishing the mapping between the account and the role, when the authority of the account is changed, only the mapping between the account and the role needs to be adjusted, so that the change operation is simple and convenient, and errors are not easy to occur.
Description
Technical Field
The invention relates to the technical field of data information management, in particular to an account permission configuration method, an account permission configuration device, terminal equipment and a computer storage medium.
Background
The authority configuration system is used for dividing the authority into one authority point and endowing different roles, and the authority configuration system is the same as that a specific work duty or content is endowed to a certain position in the real world and then the specific positions are endowed to a certain employee one by one. Before a main body executes a certain operation, whether the main body has the authority to execute the operation or not is firstly checked, namely, an operation authority point is available, if the operation authority point is available, the operation is executed, otherwise, the operation is not executed.
For example, one system has 100 permissions, the permission level is divided into four levels, namely 4 roles, ① administrators (100 permissions) ② branch company administrators (80 permissions) ③ primary dealers (60 permissions) ④ secondary dealers (40 permissions), when the roles with the permission number not contained in one system are wanted, for example, the roles with the permission number of 50 permissions are needed, the roles are not contained in the system, the purpose can be achieved only by modifying and setting the program again, and the operation of the program is complex, inconvenient and easy to make mistakes.
Disclosure of Invention
The embodiment of the invention aims to provide an account permission configuration method, an account permission configuration device, terminal equipment and a computer storage medium, which can flexibly set the permission of a role, only need to adjust the mapping of the account and the role when the permission of the account is changed by establishing the mapping of the account and the role, do not need to change the permission setting of the account from the program, are simple and convenient to change and are not easy to make mistakes.
A first aspect of an embodiment of the present invention provides an account permission configuration method, including:
creating a new role in the system according to a role creating instruction input by a user, and generating a permission list to be configured; the permission list to be configured records a plurality of permissions;
selecting the authority to be configured to the newly created role in the authority list to be configured according to an authority selection instruction input by a user;
according to the role creation confirmation instruction of the user, storing the newly created role into a role management module so that the newly created role has all the permissions selected by the user in the permission list to be configured;
creating a new account number in the system according to an account creation instruction input by a user;
selecting a role to be configured in the role management module according to a role selection instruction input by a user;
according to an account confirmation creation instruction input by a user, storing a newly created account into an account management module so that the newly created account has all permissions of a role selected by the user;
when an account role modification instruction input by a user is received, modifying the role of the specified account according to the account role modification instruction, so that the specified account has the authority of the modified role.
Preferably, the method further comprises:
according to the correlation degree between each authority which is not selected by the user in the authority list to be configured and the authority which is selected by the user, each authority which is not selected by the user in the authority list to be configured is sequenced; wherein, the higher the correlation degree of the authority is, the higher the ranking of the authority to be configured in the list of the authority to be configured is.
Preferably, the creating a new role in the system according to the role creating instruction input by the user and generating the list of permissions to be configured include:
when a role creating instruction input by a user is received, acquiring a role name of a role to be created, and judging whether the user wants to create a brand new role or create a lower-level role of the role existing in the role management module;
when a user needs to create a brand new role, creating the new role in the system according to the role name, and generating a first permission list as the permission list to be configured according to all permissions in a pre-configured permission management module;
when a user needs to create the subordinate role, the subordinate role is created in the system as a new role according to the role name, and a first permission list is generated as the permission list to be configured according to all permissions of the role existing in the role management module.
Preferably, the method further comprises:
when a role authority modification instruction input by a user is received, judging whether a role to be modified has a superior role or not;
when the role to be modified does not have a superior role, generating a permission list to be modified according to all permissions in the permission management module; when the role to be modified has a superior role, generating a permission list to be modified according to the permission of the superior role;
and modifying the authority of the role to be modified according to the authority selected by the user in the authority list to be modified.
A second aspect of the embodiments of the present invention provides an account permission configuration apparatus, including:
the role creating module is used for creating a new role in the system according to a role creating instruction input by a user and generating a permission list to be configured; the permission list to be configured records a plurality of permissions;
the configuration permission selection module is used for selecting the permission to be configured to the newly created role in the permission list to be configured according to a permission selection instruction input by a user;
the role storage module is used for creating a confirmation instruction according to the role of the user and storing the newly created role into the role management module so that the newly created role has all the permissions selected by the user in the permission list to be configured;
the account number creating module is used for creating a new account number in the system according to an account number creating instruction input by a user;
the role selection module is used for selecting roles to be configured in the role management module according to role selection instructions input by a user;
the account number storage module is used for storing a newly created account number into the account number management module according to an account number confirmation creation instruction input by a user, so that the newly created account number has all permissions of a role selected by the user;
and the account role modification module is used for modifying the role of the specified account according to the account role modification instruction when receiving the account role modification instruction input by the user, so that the specified account has the authority of the modified role.
Preferably, the apparatus further comprises:
the authority sorting module is used for sorting each authority which is not selected by the user in the authority list to be configured according to the correlation degree between each authority which is not selected by the user in the authority list to be configured and the authority which is selected by the user; wherein, the higher the correlation degree of the authority is, the higher the ranking of the authority to be configured in the list of the authority to be configured is.
Preferably, the role creation module includes:
the role judging unit is used for acquiring the role name of the role to be created when receiving a role creating instruction input by a user, and judging whether the user wants to create a brand new role or create a lower-level role of the role existing in the role management module;
the first authority list generating unit is used for creating a new role in the system according to the role name when a user needs to create a brand new role, and generating a first authority list as the authority list to be configured according to all the authorities in a pre-configured authority management module;
and the second permission list generating unit is used for creating the lower-level role as a new role in the system according to the role name when the user needs to create the lower-level role, and generating a first permission list as the to-be-configured permission list according to all permissions of the roles which exist in the role management module.
Preferably, the apparatus further comprises:
the role judging module is used for judging whether the role to be modified has a superior role or not when receiving a role authority modification instruction input by a user;
the modification authority list generation module is used for generating a to-be-modified authority list according to all the authorities in the authority management module when the to-be-modified role does not have a superior role; when the role to be modified has a superior role, generating a permission list to be modified according to the permission of the superior role;
and the role permission modification module is used for modifying the permission of the role to be modified according to the permission selected by the user in the permission list to be modified.
A third aspect of the present invention provides a terminal device, including a processor, a memory, and a computer program stored in the memory and configured to be executed by the processor, where the processor implements the account permission configuration method of the first aspect when executing the computer program.
A fourth aspect of the present invention provides a computer-readable storage medium, where the computer-readable storage medium includes a stored computer program, and when the computer program runs, the apparatus where the computer-readable storage medium is located is controlled to execute the account permission configuration method according to the first aspect.
Compared with the prior art, the embodiment of the invention has the beneficial effects that: the embodiment of the invention provides an account permission configuration method, an account permission configuration device, terminal equipment and a computer storage medium, wherein the account permission configuration method comprises the steps of creating a new role in a system according to a role creation instruction input by a user and generating a permission list to be configured; the permission list to be configured records a plurality of permissions; selecting the authority to be configured to the newly created role in the authority list to be configured according to an authority selection instruction input by a user; according to the role creation confirmation instruction of the user, storing the newly created role into a role management module so that the newly created role has all the permissions selected by the user in the permission list to be configured; creating a new account number in the system according to an account creation instruction input by a user; selecting a role to be configured in the role management module according to a role selection instruction input by a user; according to an account confirmation creation instruction input by a user, storing a newly created account into an account management module so that the newly created account has all permissions of a role selected by the user; when an account role modification instruction input by a user is received, modifying the role of the specified account according to the account role modification instruction, so that the specified account has the authority of the modified role. By the method, the authority of the role can be flexibly set, and by establishing the mapping between the account and the role, when the authority of the account is changed, only the mapping between the account and the role needs to be adjusted, and the authority setting of the account does not need to be changed from the aspect of a program, so that the change operation is simple and convenient, and errors are not easy to occur.
Drawings
Fig. 1 is a schematic flowchart of an account permission configuration method according to an embodiment of the present invention;
fig. 2 is a block diagram of an account permission configuration apparatus according to an embodiment of the present invention.
Detailed Description
The technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
Please refer to fig. 1, which is a flowchart illustrating an account permission configuration method according to an embodiment of the present invention. The method comprises the following steps:
s1, creating a new role in the system according to the role creation instruction input by the user, and generating a permission list to be configured; the permission list to be configured records a plurality of permissions;
s2, selecting the authority to be configured to the newly created role in the authority list to be configured according to the authority selection instruction input by the user;
s3, according to the role creation confirmation instruction of the user, storing the newly created role in the role management module, so that the newly created role has all the permissions selected by the user in the permission list to be configured;
s4, creating a new account in the system according to the account creating instruction input by the user;
s5, selecting the role to be configured in the role management module according to the role selection instruction input by the user;
s6, according to the account confirmation creation instruction input by the user, saving the newly created account into the account management module, so that the newly created account has all the permissions of the role selected by the user;
s7, when an account role modification instruction input by a user is received, modifying the role of the specified account according to the account role modification instruction, so that the specified account has the authority of the modified role.
When a role is newly added, the role is created in the role management module, the created role is named, and then the authority required by the role is selected in the authority list to be configured to complete the creation of the role; when an account needs to be newly established, account establishment is carried out in the system, the established account does not have any authority, and the account has corresponding role authority after corresponding roles in the role module need to be given to the account; when the user identity corresponding to the account is changed, the mapping between the account and the role is changed, the new role suitable for the user is endowed to the account again, and the function program of the bottom account is not required to be changed. By the method, the authority of the role can be flexibly set, and by establishing the mapping between the account and the role, when the authority of the account is changed, only the mapping between the account and the role needs to be adjusted, and the authority setting of the account does not need to be changed from the aspect of a program, so that the change operation is simple and convenient, and errors are not easy to occur.
In an optional embodiment, the method further comprises:
according to the correlation degree between each authority which is not selected by the user in the authority list to be configured and the authority which is selected by the user, each authority which is not selected by the user in the authority list to be configured is sequenced; wherein, the higher the correlation degree of the authority is, the higher the ranking of the authority to be configured in the list of the authority to be configured is.
Because there may be many permissions recorded in the permission list to be configured, the process of searching for required permissions one by a user is very complicated, and in order to improve the efficiency of configuring permissions for a certain role, the embodiment of the present invention sorts each permission which is not selected by the user in the permission list to be configured according to the relevance between each permission which is not selected by the user and the permission which is selected by the user. It should be noted that the ranking of the rights in this step is updated in real time according to the rights selected by the user in step S2. For example, the list of permissions to be configured initially has 100 permissions, and when a user selects one permission, the remaining 99 permissions are sorted according to the relevance between the user and the selected permission; when the user selects a new right, the other 98 rights are sorted according to the relevance of the other 98 rights and the two selected rights. In this way, the user can be recommended the next permission to be selected through sorting, and therefore configuration efficiency is improved.
It should be noted that, the correlation between any two rights is configured in advance, and when the number of the selected rights is n, the calculation formula of the correlation between the unselected rights and the selected rights is:
S=(S1+S2...+Sn)/n
wherein, Sn is the correlation between a certain unselected authority and the nth selected authority.
In an optional embodiment, the creating a new role in the system according to the role creation instruction input by the user and generating the list of permissions to be configured includes:
when a role creating instruction input by a user is received, acquiring a role name of a role to be created, and judging whether the user wants to create a brand new role or create a lower-level role of the role existing in the role management module;
when a user needs to create a brand new role, creating the new role in the system according to the role name, and generating a first permission list as the permission list to be configured according to all permissions in a pre-configured permission management module;
when a user needs to create the subordinate role, the subordinate role is created in the system as a new role according to the role name, and a first permission list is generated as the permission list to be configured according to all permissions of the role existing in the role management module.
That is, there may be a relationship between roles in a higher-level and a lower-level, and the authority range of the lower-level role is only included in the authority range of the upper-level role.
It should be noted that there may be a chain-type relationship between the upper level and the lower level in the whole system, for example, a is the upper level of B, C is the upper level of B, so the authority range of B is a part of a, and the authority range of C is a part of B.
In an optional embodiment, the method further comprises:
when a role authority modification instruction input by a user is received, judging whether a role to be modified has a superior role or not;
when the role to be modified does not have a superior role, generating a permission list to be modified according to all permissions in the permission management module; when the role to be modified has a superior role, generating a permission list to be modified according to the permission of the superior role;
and modifying the authority of the role to be modified according to the authority selected by the user in the authority list to be modified.
It will be understood by those skilled in the art that all or part of the processes of the methods of the embodiments described above can be implemented by a computer program, which can be stored in a computer-readable storage medium, and when executed, can include the processes of the embodiments of the methods described above. The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), or the like.
As shown in fig. 2, it is a block diagram of an account permission configuration apparatus provided in an embodiment of the present invention, and includes:
the role creating module 1 is used for creating a new role in the system according to a role creating instruction input by a user and generating a permission list to be configured; the permission list to be configured records a plurality of permissions;
the configuration permission selection module 2 is used for selecting the permission to be configured to the newly created role in the permission list to be configured according to the permission selection instruction input by the user;
the role storage module 3 is used for creating a confirmation instruction according to the role of the user and storing the newly created role into the role management module so that the newly created role has all the permissions selected by the user in the permission list to be configured;
the account number creating module 4 is used for creating a new account number in the system according to an account number creating instruction input by a user;
the role selection module 5 is used for selecting roles to be configured in the role management module according to role selection instructions input by a user;
the account number storage module 6 is used for storing a newly created account number into the account number management module according to an account number confirmation creation instruction input by a user, so that the newly created account number has all permissions of a role selected by the user;
and the account role modification module 7 is used for modifying the role of the specified account according to the account role modification instruction when receiving the account role modification instruction input by the user, so that the specified account has the authority of the modified role.
In an alternative embodiment, the apparatus further comprises:
the authority sorting module is used for sorting each authority which is not selected by the user in the authority list to be configured according to the correlation degree between each authority which is not selected by the user in the authority list to be configured and the authority which is selected by the user; wherein, the higher the correlation degree of the authority is, the higher the ranking of the authority to be configured in the list of the authority to be configured is.
In an alternative embodiment, the role creation module 1 comprises:
the role judging unit is used for acquiring the role name of the role to be created when receiving a role creating instruction input by a user, and judging whether the user wants to create a brand new role or create a lower-level role of the role existing in the role management module;
the first authority list generating unit is used for creating a new role in the system according to the role name when a user needs to create a brand new role, and generating a first authority list as the authority list to be configured according to all the authorities in a pre-configured authority management module;
and the second permission list generating unit is used for creating the lower-level role as a new role in the system according to the role name when the user needs to create the lower-level role, and generating a first permission list as the to-be-configured permission list according to all permissions of the roles which exist in the role management module.
In an alternative embodiment, the apparatus further comprises:
the role judging module is used for judging whether the role to be modified has a superior role or not when receiving a role authority modification instruction input by a user;
the modification authority list generation module is used for generating a to-be-modified authority list according to all the authorities in the authority management module when the to-be-modified role does not have a superior role; when the role to be modified has a superior role, generating a permission list to be modified according to the permission of the superior role;
and the role permission modification module is used for modifying the permission of the role to be modified according to the permission selected by the user in the permission list to be modified.
It should be noted that, the account permission configuration apparatus provided in the embodiment of the present invention is configured to execute all the process steps of an account permission configuration method in the above embodiment, and working principles and beneficial effects of the two are in one-to-one correspondence, so that details are not described again.
It should be noted that the above-described device embodiments are merely illustrative, where the units described as separate parts may or may not be physically separate, and the parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on multiple network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of the present embodiment. In addition, in the drawings of the embodiment of the apparatus provided by the present invention, the connection relationship between the modules indicates that there is a communication connection between them, and may be specifically implemented as one or more communication buses or signal lines. One of ordinary skill in the art can understand and implement it without inventive effort.
Correspondingly, the embodiment of the invention also provides terminal equipment, which comprises a processor, a memory and a computer program stored in the memory and configured to be executed by the processor, wherein the processor implements the account permission configuration method when executing the computer program.
Correspondingly, the embodiment of the invention also provides a computer-readable storage medium, which includes a stored computer program, wherein when the computer program runs, the device where the computer-readable storage medium is located is controlled to execute the above account permission configuration method.
The storage medium may be a magnetic disk, an optical disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), or the like.
The Processor may be a Central Processing Unit (CPU), other general purpose Processor, a Digital Signal Processor (DSP), an Application Specific Integrated Circuit (ASIC), an off-the-shelf Programmable Gate Array (FPGA) or other Programmable logic device, discrete Gate or transistor logic, discrete hardware components, etc. The general purpose processor may be a microprocessor or the processor may be any conventional processor or the like, the processor is the control center of the pressure measurement server, and various interfaces and lines are used to connect the various parts of the whole pressure measurement server.
The memory may be used to store the computer program and/or module, and the processor may implement various functions of the pressure measurement server by running or executing the computer program and/or module stored in the memory and calling data stored in the memory. The memory may mainly include a storage program area and a storage data area, wherein the storage program area may store an operating system, an application program required by at least one function (such as a sound playing function, an image playing function, etc.), and the like; the storage data area may store data (such as audio data, a phonebook, etc.) created according to the use of the cellular phone, and the like. In addition, the memory may include high speed random access memory, and may also include non-volatile memory, such as a hard disk, a memory, a plug-in hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash memory Card (Flash Card), at least one magnetic disk storage device, a Flash memory device, or other volatile solid state storage device.
Wherein, the terminal device integrated module/unit can be stored in a computer readable storage medium if it is implemented in the form of software functional unit and sold or used as a stand-alone product. Based on such understanding, all or part of the flow of the method according to the embodiments of the present invention may also be implemented by a computer program, which may be stored in a computer-readable storage medium, and when the computer program is executed by a processor, the steps of the method embodiments may be implemented. Wherein the computer program comprises computer program code, which may be in the form of source code, object code, an executable file or some intermediate form, etc. The computer-readable medium may include: any entity or device capable of carrying the computer program code, recording medium, usb disk, removable hard disk, magnetic disk, optical disk, computer Memory, Read-Only Memory (ROM), Random Access Memory (RAM), electrical carrier wave signals, telecommunications signals, software distribution medium, and the like. It should be noted that the computer readable medium may contain content that is subject to appropriate increase or decrease as required by legislation and patent practice in jurisdictions, for example, in some jurisdictions, computer readable media does not include electrical carrier signals and telecommunications signals as is required by legislation and patent practice.
Compared with the prior art, the embodiment of the invention has the beneficial effects that: the embodiment of the invention provides an account permission configuration method, an account permission configuration device, terminal equipment and a computer storage medium, wherein the account permission configuration method comprises the steps of creating a new role in a system according to a role creation instruction input by a user and generating a permission list to be configured; the permission list to be configured records a plurality of permissions; selecting the authority to be configured to the newly created role in the authority list to be configured according to an authority selection instruction input by a user; according to the role creation confirmation instruction of the user, storing the newly created role into a role management module so that the newly created role has all the permissions selected by the user in the permission list to be configured; creating a new account number in the system according to an account creation instruction input by a user; selecting a role to be configured in the role management module according to a role selection instruction input by a user; according to an account confirmation creation instruction input by a user, storing a newly created account into an account management module so that the newly created account has all permissions of a role selected by the user; when an account role modification instruction input by a user is received, modifying the role of the specified account according to the account role modification instruction, so that the specified account has the authority of the modified role. By the method, the authority of the role can be flexibly set, and by establishing the mapping between the account and the role, when the authority of the account is changed, only the mapping between the account and the role needs to be adjusted, and the authority setting of the account does not need to be changed from the aspect of a program, so that the change operation is simple and convenient, and errors are not easy to occur.
While the foregoing is directed to the preferred embodiment of the present invention, it will be understood by those skilled in the art that various changes and modifications may be made without departing from the spirit and scope of the invention.
Claims (8)
1. An account permission configuration method is characterized by comprising the following steps:
creating a new role in the system according to a role creating instruction input by a user, and generating a permission list to be configured; the permission list to be configured records a plurality of permissions;
selecting the authority to be configured to the newly created role in the authority list to be configured according to an authority selection instruction input by a user; when the authority to be configured to the newly created role is selected in the authority list to be configured according to the authority selection instruction input by the user, each authority is selected, and each authority which is not selected by the user in the authority list to be configured is sorted according to the correlation degree between each authority which is not selected by the user in the authority list to be configured and the authority which is selected by the user; the higher the relevance is, the more front the ranking of the authority with higher relevance in the authority list to be configured is;
according to the role creation confirmation instruction of the user, storing the newly created role into a role management module so that the newly created role has all the permissions selected by the user in the permission list to be configured;
creating a new account number in the system according to an account creation instruction input by a user;
selecting a role to be configured in the role management module according to a role selection instruction input by a user;
according to an account confirmation creation instruction input by a user, storing a newly created account into an account management module so that the newly created account has all permissions of a role selected by the user;
when an account role modification instruction input by a user is received, modifying the role of the specified account according to the account role modification instruction, so that the specified account has the authority of the modified role.
2. The account permission configuration method according to claim 1, wherein the creating a new role in the system according to the role creation instruction input by the user and generating the permission list to be configured includes:
when a role creating instruction input by a user is received, acquiring a role name of a role to be created, and judging whether the user wants to create a brand new role or create a lower-level role of the role existing in the role management module;
when a user needs to create a brand new role, creating the new role in the system according to the role name, and generating a first permission list as the permission list to be configured according to all permissions in a pre-configured permission management module;
when a user needs to create the subordinate role, the subordinate role is created in the system as a new role according to the role name, and a first permission list is generated as the permission list to be configured according to all permissions of the role existing in the role management module.
3. The account permission configuration method according to claim 2, wherein the method further comprises:
when a role authority modification instruction input by a user is received, judging whether a role to be modified has a superior role or not;
when the role to be modified does not have a superior role, generating a permission list to be modified according to all permissions in the permission management module; when the role to be modified has a superior role, generating a permission list to be modified according to the permission of the superior role;
and modifying the authority of the role to be modified according to the authority selected by the user in the authority list to be modified.
4. An account permission configuration device, comprising:
the role creating module is used for creating a new role in the system according to a role creating instruction input by a user and generating a permission list to be configured; the permission list to be configured records a plurality of permissions;
the configuration permission selection module is used for selecting the permission to be configured to the newly created role in the permission list to be configured according to a permission selection instruction input by a user;
the role storage module is used for creating a confirmation instruction according to the role of the user and storing the newly created role into the role management module so that the newly created role has all the permissions selected by the user in the permission list to be configured;
the account number creating module is used for creating a new account number in the system according to an account number creating instruction input by a user;
the role selection module is used for selecting roles to be configured in the role management module according to role selection instructions input by a user;
the account number storage module is used for storing a newly created account number into the account number management module according to an account number confirmation creation instruction input by a user, so that the newly created account number has all permissions of a role selected by the user;
the account role modification module is used for modifying the role of the specified account according to the account role modification instruction when receiving the account role modification instruction input by a user, so that the specified account has the authority of the modified role;
the authority sorting module is used for sorting each authority which is not selected by the user in the authority list to be configured according to the correlation degree between each authority which is not selected by the user in the authority list to be configured and the authority which is selected by the user; wherein, the higher the correlation degree of the authority is, the higher the ranking of the authority to be configured in the list of the authority to be configured is.
5. The account permission configuring apparatus of claim 4, wherein the role creating module comprises:
the role judging unit is used for acquiring the role name of the role to be created when receiving a role creating instruction input by a user, and judging whether the user wants to create a brand new role or create a lower-level role of the role existing in the role management module;
the first authority list generating unit is used for creating a new role in the system according to the role name when a user needs to create a brand new role, and generating a first authority list as the authority list to be configured according to all the authorities in a pre-configured authority management module;
and the second permission list generating unit is used for creating the lower-level role as a new role in the system according to the role name when the user needs to create the lower-level role, and generating a first permission list as the to-be-configured permission list according to all permissions of the roles which exist in the role management module.
6. The account permission configuration apparatus according to claim 5, wherein the apparatus further comprises:
the role judging module is used for judging whether the role to be modified has a superior role or not when receiving a role authority modification instruction input by a user;
the modification authority list generation module is used for generating a to-be-modified authority list according to all the authorities in the authority management module when the to-be-modified role does not have a superior role; when the role to be modified has a superior role, generating a permission list to be modified according to the permission of the superior role;
and the role permission modification module is used for modifying the permission of the role to be modified according to the permission selected by the user in the permission list to be modified.
7. A terminal device comprising a processor, a memory and a computer program stored in the memory and configured to be executed by the processor, the processor implementing the account permission configuration method according to any one of claims 1 to 3 when executing the computer program.
8. A computer-readable storage medium, comprising a stored computer program, wherein when the computer program runs, the computer-readable storage medium controls a device to execute the account right configuration method according to any one of claims 1 to 3.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710846519.5A CN107742066B (en) | 2017-09-18 | 2017-09-18 | Account permission configuration method and device, terminal equipment and computer storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710846519.5A CN107742066B (en) | 2017-09-18 | 2017-09-18 | Account permission configuration method and device, terminal equipment and computer storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN107742066A CN107742066A (en) | 2018-02-27 |
| CN107742066B true CN107742066B (en) | 2020-07-28 |
Family
ID=61235162
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710846519.5A Active CN107742066B (en) | 2017-09-18 | 2017-09-18 | Account permission configuration method and device, terminal equipment and computer storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN107742066B (en) |
Families Citing this family (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109104412B (en) * | 2018-07-13 | 2021-10-26 | 万翼科技有限公司 | Account authority management method, account authority management system and computer readable storage medium |
| CN109145542B (en) * | 2018-08-31 | 2022-07-12 | 广东虹勤通讯技术有限公司 | Authority distribution method and device for realizing independent work of multiple input devices |
| CN109284602A (en) * | 2018-09-13 | 2019-01-29 | 广东电网有限责任公司 | A kind of authority configuring method and system |
| CN110298167A (en) * | 2019-05-22 | 2019-10-01 | 深圳壹账通智能科技有限公司 | Method for managing user right, device, computer equipment and storage medium |
| CN111881475B (en) * | 2020-07-27 | 2021-04-16 | 广州锦行网络科技有限公司 | Method for selecting role authority based on authority association |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101582767A (en) * | 2009-06-24 | 2009-11-18 | 阿里巴巴集团控股有限公司 | Authorization control method and authorization server |
| CN102063433A (en) * | 2009-11-16 | 2011-05-18 | 华为技术有限公司 | Method and device for recommending related items |
| CN105005730A (en) * | 2015-08-13 | 2015-10-28 | 杭州杉石科技有限公司 | Authority design method based on APP (application) |
| CN105184145A (en) * | 2015-08-17 | 2015-12-23 | 深圳中兴网信科技有限公司 | Permission management method and management apparatus |
| CN105243335A (en) * | 2015-09-30 | 2016-01-13 | 浪潮集团有限公司 | Rights management method and apparatus |
| CN106570406A (en) * | 2016-10-27 | 2017-04-19 | 深圳前海微众银行股份有限公司 | Data level permission configuration method and device |
| CN106790001A (en) * | 2016-12-12 | 2017-05-31 | 中电科华云信息技术有限公司 | Multisystem role-security management method and system based on unified interface |
-
2017
- 2017-09-18 CN CN201710846519.5A patent/CN107742066B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101582767A (en) * | 2009-06-24 | 2009-11-18 | 阿里巴巴集团控股有限公司 | Authorization control method and authorization server |
| CN102063433A (en) * | 2009-11-16 | 2011-05-18 | 华为技术有限公司 | Method and device for recommending related items |
| CN105005730A (en) * | 2015-08-13 | 2015-10-28 | 杭州杉石科技有限公司 | Authority design method based on APP (application) |
| CN105184145A (en) * | 2015-08-17 | 2015-12-23 | 深圳中兴网信科技有限公司 | Permission management method and management apparatus |
| CN105243335A (en) * | 2015-09-30 | 2016-01-13 | 浪潮集团有限公司 | Rights management method and apparatus |
| CN106570406A (en) * | 2016-10-27 | 2017-04-19 | 深圳前海微众银行股份有限公司 | Data level permission configuration method and device |
| CN106790001A (en) * | 2016-12-12 | 2017-05-31 | 中电科华云信息技术有限公司 | Multisystem role-security management method and system based on unified interface |
Also Published As
| Publication number | Publication date |
|---|---|
| CN107742066A (en) | 2018-02-27 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN107742066B (en) | Account permission configuration method and device, terminal equipment and computer storage medium | |
| CN107610695A (en) | Driver's voice wakes up the dynamic adjusting method of instruction word weight | |
| CN111914520A (en) | Document collaborative editing method and device, computer device and storage medium | |
| CN107632827B (en) | Method and device for generating installation package of application | |
| US11977719B2 (en) | Mode setting method and device of monitoring system | |
| CN107465687B (en) | Method, device and terminal for realizing permission configuration | |
| CN105678506A (en) | Information prompting method and apparatus | |
| CN104408118A (en) | Database establishing method and device | |
| CN104239567A (en) | Method and device for processing dimension in data warehouse | |
| CN106547870A (en) | Point table method and device of data base | |
| CN108363578A (en) | Application program packaging method, electronic device and computer storage media | |
| CN106227597A (en) | Task priority treating method and apparatus | |
| CN105872635A (en) | Video resource distribution method and device | |
| CN109684033B (en) | Cloud platform bare metal management method, storage medium, electronic device and system | |
| CN112667631A (en) | Method, device and equipment for automatically editing service field and storage medium | |
| CN104599092A (en) | Order business monitoring method and equipment | |
| CN110278565B (en) | Base station design method and device | |
| CN114124524B (en) | Cloud platform permission setting method and device, terminal equipment and storage medium | |
| US20180260303A1 (en) | Method and device for determining usage log | |
| CN113312669B (en) | Password synchronization method, device and storage medium | |
| CN113609237B (en) | Construction land change data processing method, device, equipment and medium | |
| CN110895460A (en) | Jenkins-based robot system integration method and device and terminal equipment | |
| CN108334394B (en) | Multi-language processing method and device for basic data of multi-language software system | |
| CN105808318B (en) | Information processing method and electronic equipment | |
| CN112187905B (en) | Load balancing interface table maintenance method, equipment and system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |