CN109697357A - System authority setting method and management system capable of being dynamically expanded - Google Patents
System authority setting method and management system capable of being dynamically expanded Download PDFInfo
- Publication number
- CN109697357A CN109697357A CN201811613212.1A CN201811613212A CN109697357A CN 109697357 A CN109697357 A CN 109697357A CN 201811613212 A CN201811613212 A CN 201811613212A CN 109697357 A CN109697357 A CN 109697357A
- Authority
- CN
- China
- Prior art keywords
- administrator
- setting method
- data
- permission
- management system
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
- 238000000034 method Methods 0.000 title claims abstract description 19
- 238000011161 development Methods 0.000 abstract description 4
- 241001269238 Data Species 0.000 description 2
- 230000004048 modification Effects 0.000 description 2
- 238000012986 modification Methods 0.000 description 2
- 230000008859 change Effects 0.000 description 1
- 230000037430 deletion Effects 0.000 description 1
- 238000012217 deletion Methods 0.000 description 1
- 230000000694 effects Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 230000008439 repair process Effects 0.000 description 1
- 238000012827 research and development Methods 0.000 description 1
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/31—User authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F2221/00—Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/21—Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F2221/2113—Multi-level security, e.g. mandatory access control
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Theoretical Computer Science (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
Abstract
The invention discloses a dynamically expandable system authority setting method and a management system, wherein the system authority setting method comprises the following steps: setting user authority as at least one of an administrator and a common user; and setting a plurality of selectable identifications for at least one administrator and/or common users, so that the administrator can dynamically select one selectable identification for the lower-level users managed by the administrator, and the administrator can have corresponding system authority. The invention can dynamically expand the user authority, so that the management system is more flexible to use and is suitable for the development of enterprises as much as possible.
Description
Technical field
The present invention relates to management systems, more particularly to one kind can be in the method for dynamic expansion system permission, and uses
The management system of this method.
Background technique
Management system or platform are the indispensable office softwares of each enterprise or department, be used to management work data,
Process etc..Existing management system can be arranged corresponding permission to carry out the data in system because of the needs of business department
Protection.For example, super keepe can increase all data in system, be deleted or modified, department level administrator is only
The data in this department can only only be increased, be deleted or modified, ordinary user may can only upload number relevant to oneself
According to, and check relevant data, do not possess other permissions.Although protecting the safety of data to a certain extent in this way,
But in existing management system, the level of user right just has determined that at system research and development initial stage substantially, such as four ranks
Administrator, in addition ordinary user, base user etc., and with the development of business event, having arrived certain phase, these are fixed
User right can not meet demand, at this time, it may be necessary to which Expenses Cost, energy make new management system again.
Summary of the invention
Lead to technical problem inflexible for use to solve user right fixation in the prior art, the invention proposes one
System permission setting method, the management system of kind dynamic extending.
Wherein, system permission setting method proposed by the present invention, comprising:
It is at least one administrator and ordinary user by user authority setting;
Plurality of optional is arranged at least one administrator and/or ordinary user to identify, makes any administrator dynamically
Subordinate subscriber for its management selects a kind of optional mark, it is made to have corresponding system permission.
Specifically, the optional mark can be arranged in a one-to-one correspondence according to type of service.
Specifically, the administrator includes super keepe, department level administrator, department grade administrator.
In one embodiment, when Installed System Memory is in image data, the junior that the administrator is managed for it is used
Family carries out the priority assignation of corresponding image data, its subordinate subscriber is made to possess different operating rights for different image datas
Limit.Preferably, image data is divided into multiple groups by the administrator, is that minimum unit sets image data progress permission with group
It sets.
In one embodiment, the data of system have the field for description, what the administrator was managed for it
Subordinate subscriber carries out corresponding data field setting, makes its subordinate subscriber when operate same type data, and editor is identical or not
Same field.Specifically, the data are audio data or video data.
The management system of permission is set the invention also provides the system permission setting method in by adopting the above technical scheme
System.In one embodiment, the management system is noise platform.
The present invention has also carried out lateral expansion to existing permission framework other than the permission framework of existing management system
Exhibition, so that business development of the management system with enterprise, according to circumstances can carry out dynamic expansion to user right, not only save
Production cost, improve work efficiency, it is ensured that the safeties of data.
Detailed description of the invention
Below with reference to embodiment and attached drawing, the present invention is described in detail, in which:
Fig. 1 is the flow chart of one embodiment of the invention.
Fig. 2 is the flow chart of part operation of the present invention.
Specific embodiment
The principle and embodiment that the invention will now be described in detail with reference to the accompanying drawings.
As shown in Figure 1, user right is divided into two kinds by management system of the invention, one is fixed user right, this
System logic with existing management system is identical.Another kind is the permission of dynamic extending, this part permission can root
It is extended, is arranged at any time according to needing.
Fixed user right can be arranged according to the organizational structure of company itself, the framework of company have administrative staff ->
Department -> department -> ordinary user's level Four.Correspondingly, the user right of management system is also used to the organizational structure of level Four, it is right
Answer super keepe -> department level administrator -> department grade administrator -> ordinary user.That is, super keepe can be with
The subordinate subscriber of 3 kinds of permissions is created, corresponding department level administrator can only create the subordinate subscriber of 2 kinds of permissions, and department's grade is managed
Reason person can only then create a type of subordinate subscriber.Wherein, the permission of super keepe in systems is the largest, all
Thing can be done, and either be the increase, deletion or modification of data.Super keepe can also have multiple simultaneously, arbitrarily
One super keepe can delete the thing of other super keepes creation.Department level administrator corresponds to entire department
Administrator.Such as department level administrator can only see all the things of this department, while also just can only increase, deletes or repair
Change all data or file of this department.Department grade administrator corresponds to some department inside a department.It will can only see
The a series of thing such as all people person, file, data of this department, this department.Fig. 2, which is shown, possesses different user permission
Administrator or ordinary user's effect that interface is shown when logging in.
Plurality of optional is arranged at least one administrator and/or ordinary user to identify, administrator any in this way can dynamic
Ground selects a kind of optional mark for the subordinate subscriber (i.e. junior administrator, ordinary user) of its management, it is made to have corresponding system
System permission.If the user right of above-mentioned fixation is defined as priority assignation in a longitudinal direction, the permission of dynamic extending
It is that permission is set dynamically in a lateral direction.For example, department level administrator can for its management department grade administrator,
Ordinary user selects a kind of optional mark respectively, makes its specific corresponding permission, is also similar to be arranged not to the same person
Same role or title is the same, and the specific optional mark can be arranged in a one-to-one correspondence according to type of service.Such as in addition to general
Other than general family, with the development of business, laboratory technician is increased, for laboratory technician, experimental data can be increased,
It is deleted or modified, but ordinary user can only be to look at experimental data, and laboratory technician does not need to possess department grade administrator
Permission, at this point, increase by one it is optional mark to represent laboratory technician, distinguish it with ordinary user, possess different power
Limit.
In a specific embodiment, management system of the invention can be noise platform, needs and shows that noise is related
Chart.For the chart in system, possible business department feel as needed the chart having cannot to ordinary user into
Row check or how, we need to control these tables accordingly according to business department.Administrator is directed at this time
Its subordinate subscriber managed carries out the priority assignation of corresponding image data, makes its subordinate subscriber for different image datas
Possess different operating rights.With the increase of business, when chart data amount is larger, administrator can also divide image data
For multiple groups, it is that minimum unit carries out priority assignation to image data with group, improves the efficiency of priority assignation.
In addition to chart data accident, other data in system etc. may all have the field for description, such as need
When showing table in systems, the field for needing to be described is also required to corresponding describing word when uploading the files such as audio, video
Section, but the field of same type of data different department, different departments may it is identical may also be different, administrator
Corresponding data field setting can be carried out for the subordinate subscriber that it is managed, make its subordinate subscriber in operation same type number
According to when, identical or different field is edited, to meet the different needs of different department's different departments.
The foregoing is merely illustrative of the preferred embodiments of the present invention, is not intended to limit the invention, all in essence of the invention
Made any modifications, equivalent replacements, and improvements etc., should all be included in the protection scope of the present invention within mind and principle.
Claims (9)
1. a kind of system permission setting method characterized by comprising
It is at least one administrator and ordinary user by user authority setting;
Plurality of optional is arranged at least one administrator and/or ordinary user to identify, makes any administrator dynamically
Subordinate subscriber for its management selects a kind of optional mark, it is made to have corresponding system permission.
2. the system as claimed in claim 1 authority setting method, which is characterized in that the optional mark is according to type of service one
One is correspondingly arranged.
3. the system as claimed in claim 1 authority setting method, which is characterized in that the administrator include super keepe,
Department level administrator, department grade administrator.
4. the system as claimed in claim 1 authority setting method, which is characterized in that when Installed System Memory is in image data, institute
The priority assignation that administrator carries out corresponding image data for its subordinate subscriber managed is stated, makes its subordinate subscriber for not
Same image data possesses different operating rights.
5. system permission setting method as claimed in claim 4, which is characterized in that image data is divided by the administrator
Multiple groups are that minimum unit carries out priority assignation to image data with group.
6. the system as claimed in claim 1 authority setting method, which is characterized in that the data of system have the word for description
Section, the subordinate subscriber that the administrator is managed for it carry out corresponding data field setting, are operating its subordinate subscriber
When same type data, identical or different field is edited.
7. system permission setting method as claimed in claim 6, which is characterized in that the data are audio data or video counts
According to.
8. the management system of permission is arranged using system permission setting method as claimed in any one of claims 1 to 7.
9. management system as claimed in claim 8, which is characterized in that the management system is noise platform.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811613212.1A CN109697357A (en) | 2018-12-27 | 2018-12-27 | System authority setting method and management system capable of being dynamically expanded |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811613212.1A CN109697357A (en) | 2018-12-27 | 2018-12-27 | System authority setting method and management system capable of being dynamically expanded |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN109697357A true CN109697357A (en) | 2019-04-30 |
Family
ID=66232168
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811613212.1A Pending CN109697357A (en) | 2018-12-27 | 2018-12-27 | System authority setting method and management system capable of being dynamically expanded |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109697357A (en) |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111292438A (en) * | 2020-01-17 | 2020-06-16 | 国网浙江省电力有限公司丽水供电公司 | Unmanned aerial vehicle inspection method with information security |
| CN113222466A (en) * | 2021-05-28 | 2021-08-06 | 深圳市大恩信息科技有限公司 | Accounting project process monitoring method and system based on ERP |
| CN114329371A (en) * | 2021-12-31 | 2022-04-12 | 杭州电子科技大学 | Database user authority management module |
| CN114840521A (en) * | 2022-04-22 | 2022-08-02 | 北京友友天宇系统技术有限公司 | Database authority management and data protection method, device, equipment and storage medium |
Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104050401A (en) * | 2013-03-12 | 2014-09-17 | 腾讯科技(深圳)有限公司 | User permission management method and system |
| CN104519072A (en) * | 2015-01-14 | 2015-04-15 | 浪潮(北京)电子信息产业有限公司 | Authority control method and device |
| CN105046165A (en) * | 2015-07-10 | 2015-11-11 | 沈文策 | Network project platform hierarchy right control method |
| CN106850636A (en) * | 2017-02-13 | 2017-06-13 | 深圳市沃特沃德股份有限公司 | A kind of authority acquiring method, authority opening method, terminal and server |
| CN106850623A (en) * | 2017-02-07 | 2017-06-13 | 浪潮通用软件有限公司 | A kind of general information issue right management method |
-
2018
- 2018-12-27 CN CN201811613212.1A patent/CN109697357A/en active Pending
Patent Citations (5)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104050401A (en) * | 2013-03-12 | 2014-09-17 | 腾讯科技(深圳)有限公司 | User permission management method and system |
| CN104519072A (en) * | 2015-01-14 | 2015-04-15 | 浪潮(北京)电子信息产业有限公司 | Authority control method and device |
| CN105046165A (en) * | 2015-07-10 | 2015-11-11 | 沈文策 | Network project platform hierarchy right control method |
| CN106850623A (en) * | 2017-02-07 | 2017-06-13 | 浪潮通用软件有限公司 | A kind of general information issue right management method |
| CN106850636A (en) * | 2017-02-13 | 2017-06-13 | 深圳市沃特沃德股份有限公司 | A kind of authority acquiring method, authority opening method, terminal and server |
Cited By (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN111292438A (en) * | 2020-01-17 | 2020-06-16 | 国网浙江省电力有限公司丽水供电公司 | Unmanned aerial vehicle inspection method with information security |
| CN113222466A (en) * | 2021-05-28 | 2021-08-06 | 深圳市大恩信息科技有限公司 | Accounting project process monitoring method and system based on ERP |
| CN114329371A (en) * | 2021-12-31 | 2022-04-12 | 杭州电子科技大学 | Database user authority management module |
| CN114329371B (en) * | 2021-12-31 | 2023-10-13 | 杭州电子科技大学 | Database user authority management module |
| CN114840521A (en) * | 2022-04-22 | 2022-08-02 | 北京友友天宇系统技术有限公司 | Database authority management and data protection method, device, equipment and storage medium |
| CN114840521B (en) * | 2022-04-22 | 2023-03-21 | 北京友友天宇系统技术有限公司 | Database authority management and data protection method, device, equipment and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN109697357A (en) | System authority setting method and management system capable of being dynamically expanded | |
| US9641334B2 (en) | Method and apparatus for ascertaining data access permission of groups of users to groups of data elements | |
| CN102354356B (en) | Data authority management device and method | |
| US20060218639A1 (en) | Security control verification and monitoring subsystem for use in a computer information database system | |
| ATE327614T1 (en) | AUTOMATIC SERVICE SETUP FOR COMPUTER SYSTEM USERS | |
| CN111428212B (en) | Data visualization system and data authority management method thereof | |
| CN107506477A (en) | A kind of archive management system | |
| CN103996000A (en) | Authority management system and method | |
| US20100115577A1 (en) | Method of Role Creation | |
| CN101894231A (en) | Permission expansion control system and method thereof | |
| CN105577841A (en) | File synchronization method, device, client, server side and device | |
| CN105550854A (en) | Access control device of cloud environment management platform | |
| EP2659351A1 (en) | Method and apparatus for ascertaining data access permission of groups of users to groups of data elements | |
| CN104008441A (en) | Task management system and method for automatically submitting files into version library | |
| CN111291408A (en) | Data management method and device and electronic equipment | |
| CA2546163A1 (en) | Attribute-based allocation of resources to security domains | |
| CN101770608A (en) | Management method and device of engineering versions | |
| CN110427750A (en) | A kind of method and system carrying out the control of list permission by permission combination | |
| CN106095409A (en) | The device and method that a kind of data map | |
| US8473466B1 (en) | Systems and methods for storing data, such as storing data based on storage classes | |
| CN100391160C (en) | Method for setting user's power in communication system | |
| CN112270003A (en) | Multi-service dynamic data source configuration method, platform and electronic equipment | |
| CN108255435B (en) | Data storage system for controlling access by using hierarchical tree structure | |
| US20060036869A1 (en) | Methods and systems that provide user access to computer resources with controlled user access rights | |
| Syalim et al. | Grouping provenance information to improve efficiency of access control |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| RJ01 | Rejection of invention patent application after publication | ||
| RJ01 | Rejection of invention patent application after publication |
Application publication date: 20190430 |