CN109740338B - Method and device for creating permission space and computer-readable storage medium - Google Patents
Method and device for creating permission space and computer-readable storage medium Download PDFInfo
- Publication number
- CN109740338B CN109740338B CN201811588572.0A CN201811588572A CN109740338B CN 109740338 B CN109740338 B CN 109740338B CN 201811588572 A CN201811588572 A CN 201811588572A CN 109740338 B CN109740338 B CN 109740338B
- Authority
- CN
- China
- Prior art keywords
- authority
- data resource
- space
- code
- current data
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Images
Abstract
The invention discloses a method for creating an authority space, which comprises the following steps: acquiring each data resource, and configuring a producer code and a consumer code for each data resource; determining authority expressions of all the personnel according to the producer codes and the consumer codes; and constructing an authority space according to each producer code, the consumer code and the authority expression. The invention also discloses a device for creating the permission space and a computer readable storage medium. The invention has simple permission configuration of data resources.
Description
Technical Field
The present invention relates to the field of data processing technologies, and in particular, to a method and an apparatus for creating an authority space, and a computer-readable storage medium.
Background
At present, the authority management scheme of a software system is based on the idea of single internal authority of an enterprise, and utilizes a relational database to set authority management by adopting a plurality of fields or to configure and manage the authority by adopting a role mode.
Under the authority management scheme, the problem that a similar security company serves a plurality of other organizations is difficult to solve, under the scene, one employee not only has different roles of the organizations but also has different roles in the service organizations, and the service organizations and the organizations served by the service organizations can cause extremely complicated authority management, very difficult configuration and trouble to system administrators of each organization.
Disclosure of Invention
The invention mainly aims to provide a method and a device for creating an authority space and a computer-readable storage medium, aiming at solving the problem of difficult authority management configuration.
In order to achieve the above object, the present invention provides a method for creating an authority space, including the following steps:
acquiring each data resource, and configuring a producer code and a consumer code for each data resource;
determining authority expressions of all the personnel according to the producer codes and the consumer codes;
and constructing an authority space according to each producer code, the consumer code and the authority expression.
In one embodiment, the step of configuring a consumer code for each of the data resources comprises:
sequentially using each data resource as a current data resource;
determining a first organizational hierarchy containing a first right to the current data resource, wherein the first right comprises at least one of a read right and a delete right;
and coding the current data resource according to the first organization level so as to obtain a consumer code corresponding to the current data resource.
In one embodiment, the step of determining the authority expression of each person according to the consumer code comprises:
determining the first organization level and the first right corresponding to the consumer code;
and carrying out authority coding on each person corresponding to the first organization level according to the first authority so as to obtain an authority expression of each person corresponding to the first organization level.
In one embodiment, the step of configuring a producer code for each of the data resources comprises:
sequentially using each data resource as a current data resource;
determining a second organizational hierarchy containing a second right to the current data resource, wherein the second right comprises a creation right, an update right, a deletion right and a read right;
and coding the current data resource according to the second organization level so as to obtain a producer code corresponding to the current data resource.
In an embodiment, after the step of determining a second organizational level containing a second right to the current data resource, the method further comprises:
determining whether the current data resource contains system access rights;
and when the current data resource data does not contain system access rights, performing the step of encoding the current data resource according to the second organization level.
In one embodiment, after the step of determining whether the current data resource contains system access right, the method further includes:
when the current data resource data contains system access authority, determining an application identifier corresponding to the system access authority;
and coding the current data resource according to the application identifier and the second organization level so as to obtain a producer code corresponding to the current data resource.
In one embodiment, the step of determining the authority expression of each person according to the producer code includes:
determining the second organization level and the second authority corresponding to the producer code;
and carrying out authority coding on each person corresponding to the second organization level according to the second authority so as to obtain an authority expression of each person corresponding to the second organization level.
In an embodiment, the data resources comprise user information of individual persons.
In order to achieve the above object, the present invention further provides an apparatus for creating an authority space, the apparatus for creating an authority space includes a processor, a memory, and a program for creating an authority space stored in the memory and operable on the processor, and the program for creating an authority space, when executed by the processor, implements the steps of the method for creating an authority space as described above.
To achieve the above object, the present invention further provides a computer-readable storage medium storing a creation program of an authority space, which, when executed by the processor, implements the steps of the creation method of an authority space as described above.
According to the method and the device for establishing the authority space and the computer readable storage medium, the device acquires each data resource, configures a producer code and a consumer code for each data resource, and determines the authority expression corresponding to each person according to the consumer code and the producer code, so that the authority space is established according to each producer code, consumer code and authority expression; because the permission space has only three dimensions, the configuration management of the permission is simpler, the organization personnel corresponding to the data resources can be read out through coding, the permission of the organization personnel to the data resources can be determined through the permission expression, the configuration work of the permission management is simplified, meanwhile, the permission space has enough flexibility due to the coding of the data resources and the permission expression of the personnel, the stability of the device is ensured, and the condition of system transformation caused by service change and permission change is avoided.
Drawings
Fig. 1 is a schematic hardware configuration diagram of a device for creating a rights space according to an embodiment of the present invention;
FIG. 2 is a flowchart illustrating a method for creating a privilege space according to a first embodiment of the present invention;
FIG. 3 is a flowchart illustrating a detailed process of step S10 according to the present invention;
fig. 4 is another detailed flowchart of step S10 according to the present invention.
The implementation, functional features and advantages of the objects of the present invention will be further explained with reference to the accompanying drawings.
Detailed Description
It should be understood that the specific embodiments described herein are merely illustrative of the invention and are not intended to limit the invention.
The main solution of the embodiment of the invention is as follows: acquiring each data resource, and configuring a producer code and a consumer code for each data resource; determining authority expressions of all the personnel according to the producer codes and the consumer codes; and constructing an authority space according to each producer code, the consumer code and the authority expression.
Because the permission space has only three dimensions, the configuration management of the permission is simpler, the organization personnel corresponding to the data resources can be read out through coding, the permission of the organization personnel to the data resources can be determined through the permission expression, the configuration work of the permission management is simplified, meanwhile, the permission space has enough flexibility due to the coding of the data resources and the permission expression of the personnel, the stability of the device is ensured, and the condition of system transformation caused by service change and permission change is avoided.
As an implementation, the creation device of the right space may be as shown in fig. 1.
The embodiment scheme of the invention relates to a device for creating an authority space, which comprises: a processor 101, e.g. a CPU, a memory 102, a communication bus 103. Wherein a communication bus 103 is used to enable the connection communication between these organizations.
The memory 102 may be a high-speed RAM memory or a non-volatile memory (e.g., a disk memory). As shown in fig. 1, a creating program of a rights space may be included in a memory 102 as a computer-readable storage medium; and the processor 101 may be configured to call the creation program of the rights space stored in the memory 102 and perform the following operations:
acquiring each data resource, and configuring a producer code and a consumer code for each data resource;
determining authority expressions of all the personnel according to the producer codes and the consumer codes;
and constructing an authority space according to each producer code, the consumer code and the authority expression.
In one embodiment, the processor 101 may be configured to call a creation program of the privilege space stored in the memory 102 and perform the following operations:
sequentially using each data resource as a current data resource;
determining a first organizational hierarchy containing a first right to the current data resource, wherein the first right comprises at least one of a read right and a delete right;
and coding the current data resource according to the first organization level so as to obtain a consumer code corresponding to the current data resource.
In one embodiment, the processor 101 may be configured to call a creation program of the privilege space stored in the memory 102 and perform the following operations:
determining the first organization level and the first right corresponding to the consumer code;
and carrying out authority coding on each person corresponding to the first organization level according to the first authority so as to obtain an authority expression of each person corresponding to the first organization level.
In one embodiment, the processor 101 may be configured to call a creation program of the privilege space stored in the memory 102 and perform the following operations:
sequentially using each data resource as a current data resource;
determining a second organizational hierarchy containing a second right to the current data resource, wherein the second right comprises a creation right, an update right, a deletion right and a read right;
and coding the current data resource according to the second organization level so as to obtain a producer code corresponding to the current data resource.
In one embodiment, the processor 101 may be configured to call a creation program of the privilege space stored in the memory 102 and perform the following operations:
determining whether the current data resource contains system access rights;
and when the current data resource data does not contain system access rights, performing the step of encoding the current data resource according to the second organization level.
In one embodiment, the processor 101 may be configured to call a creation program of the privilege space stored in the memory 102 and perform the following operations:
when the current data resource data contains system access authority, determining an application identifier corresponding to the system access authority;
and coding the current data resource according to the application identifier and the second organization level so as to obtain a producer code corresponding to the current data resource.
In one embodiment, the processor 101 may be configured to call a creation program of the privilege space stored in the memory 102 and perform the following operations:
determining the second organization level and the second authority corresponding to the producer code;
and carrying out authority coding on each person corresponding to the second organization level according to the second authority so as to obtain an authority expression of each person corresponding to the second organization level.
In one embodiment, the processor 101 may be configured to call a creation program of the privilege space stored in the memory 102 and perform the following operations:
the data resources include user information for individual personnel.
According to the scheme, the device acquires each data resource, configures a producer code and a consumer code for each data resource, and determines the authority expression corresponding to each person according to the consumer code and the producer code, so that an authority space is constructed according to each generator code, consumer code and authority expression; because the permission space has only three dimensions, the configuration management of the permission is simpler, the organization personnel corresponding to the data resources can be read out through coding, the permission of the organization personnel to the data resources can be determined through the permission expression, the configuration work of the permission management is simplified, meanwhile, the permission space has enough flexibility due to the coding of the data resources and the permission expression of the personnel, the stability of the device is ensured, and the condition of system transformation caused by service change and permission change is avoided.
Based on the hardware architecture of the creating device of the authority space, the embodiment of the creating method of the authority space is provided.
Referring to fig. 2, fig. 2 is a first embodiment of a method for creating an authority space according to the present invention, where the method for creating an authority space includes the following steps:
step S10, acquiring each data resource, and configuring a producer code and a consumer code for each data resource;
in the invention, the execution subject is a creating device of the authority space, the device can be a control terminal or a server in the security field, the control terminal comprises a plurality of applications, each application comprises a plurality of functions, when the functions are used, data resources are generated, the data resources refer to user information of personnel, the user information comprises personal information of the user, such as age, gender and the like, and the user information can also comprise asset information and behavior record information of the user. The data resource possesses corresponding producer and consumer, the producer represents that the data resource possesses the authority such as the authority of creating, changing, deleting and reading, and the consumer only possesses the authority of reading or deleting for the data resource.
In the present invention, the apparatus performs producer coding and consumer coding on the data resource, and referring to fig. 3, that is, the step of configuring the consumer code for each data resource in step S10 includes:
step S11, sequentially using each data resource as the current data resource;
step S12, determining a first organization level containing a first authority for the current data resource, wherein the first authority comprises at least one of a read authority and a delete authority;
step S13, encoding the current data resource according to the first organization level to obtain a consumer code corresponding to the current data resource;
the device sequentially uses each data resource as a current data resource, and then determines a first organization level containing a first authority for the current data resource, wherein the first authority comprises at least one of a reading authority and a deleting authority, the organization level is an organization where a consumer corresponding to the data resource is located, the organization can be divided into a plurality of levels, such as a first-level organization, a second-level organization and a third-level organization, the first-level organization is a company, the second-level organization is each department of the company, and the third-level organization is each group under the department; further, the organizational hierarchy may be specific to a post or role of personnel, such as a financial assistant, or Zhang III, for a consumer of data resources.
After determining the first organizational hierarchy corresponding to the data resource, the current data resource may be encoded according to the first organizational hierarchy, e.g., P01, P02 represents different first-level departments, P01-01, P01-02 represent second-level departments under a certain first-level department, P01-S01 represents a certain post or role of the first-level department, and P01-02-S01 represents a certain post or role of the second-level departments under the first-level department.
The device can in this way accomplish consumer coding of the respective data resource.
Referring to fig. 4, the step of configuring a consumer code for each of the data resources in step S10 includes:
step S14, sequentially using each data resource as the current data resource;
step S15, determining a second organization level containing a second right to the current data resource, wherein the second right comprises a creation right, an update right, a deletion right and a reading right;
step S16, encoding the current data resource according to the second organization level to obtain a producer code corresponding to the current data resource.
The device takes the data resources as the current data resources in sequence, and then determines a second organization level containing a second authority to the current data resources, wherein the second authority comprises a reading authority, a deleting authority, a creating authority and an updating authority, namely the second organization level has ownership of the data resources; the second organization level is defined the same as the first organization level, and is not described herein again, the second organization level represents ownership of the data resource, and the first organization level represents read permission and delete permission of the data resource.
After the second organization level corresponding to the data resource is determined, the current data resource can be encoded according to the second organization level, and the manner of the producer encoding is the same as that of the consumer encoding, which is not described herein again.
It should be noted that, the production code may be determined according to an organization level, and may be coded by combining the organization level with a service system identifier, where the service system corresponds to different subsystems in the software system, and if necessary in terms of service, some systems (devices including multiple subsystems) may be accessed and some systems may not be accessed for a specific data resource. Based on the method, the corresponding system access authority can be set for the system which allows the data resource to be accessed, so that after the second organization level corresponding to the current data resource is determined, whether the current data resource contains the corresponding system access authority or not is determined, and if the current data resource does not contain the system access authority, the current data resource is only required to be coded according to the second organization level; when the current data resource contains the system access right, the current data resource needs to be coded according to the system access right and the second organization level to obtain a producer code, specifically, the current data resource is coded according to the second organization level to obtain a producer code to be processed, and then a system identifier of a system corresponding to the system access right is added to the producer code to be processed, so that the producer code is obtained, and the producer code can contain system identifiers of a plurality of systems.
In the invention, by carrying out the chain coding of the producer and the consumer on the data resource, when the consumer or the producer of the data resource is updated, the authority updating of the data resource can be completed only by expanding or deleting the chain coding; after the data resource is updated, the data resource can be directly identified according to the code without being identified according to the field, so that the situation that the updated data resource cannot be searched is avoided.
Step S20, determining authority expressions of each person according to the producer codes and the consumer codes;
after determining the producer code and the consumer code of the data resource, the authority expression of each person can be determined according to the consumer code and the producer code, that is, the authority expression refers to the authority of the person on the data resource, the authority is generally divided into the authority of creation, update, reading, deletion and the like, the producer has all the authorities, the consumer only has partial authority and cannot update and create the data resource, corresponding numbers are set for each authority, for example, the number corresponding to the creation authority is C, the number corresponding to the reading authority is R, the number corresponding to the update authority is U, the number corresponding to the deletion authority is D, the authority expression corresponding to the producer is CRUD, and the authority expression corresponding to the consumer is UD, U or D.
The device obtains a consumer code of the data resource, and then determines an authority expression according to the consumer code, specifically, the device determines a first organization level and a first authority corresponding to the consumer code, and then determines a plurality of persons corresponding to the first organization level, wherein the number of the persons corresponding to the first organization level may be one, and then the authority coding is performed on the persons through the first authority, so as to obtain the authority expression corresponding to the members.
After the device obtains the producer code of the data resource, the authority expression can be determined according to the producer code, specifically, the device determines a second organization level and a second authority corresponding to the producer code, then determines a plurality of persons corresponding to the second organization level, and then performs the authority coding on the persons to obtain the authority expression corresponding to the members.
The authority expressions of the personnel can be obtained through the method, and it can be understood that each personnel has a plurality of authority expressions, and the authority expressions are associated with the data resources.
It should be noted that the authority expression can be defined and managed by the producer of the data resource, the producer can add, delete, modify and check the static information to set the authority, and can also perform atomic setting on the use of various functions, menus and buttons in the device, so as to provide enough flexibility for the authority management of the system of the device. The atomic setting, i.e. the minimum unit setting, may be set according to actual needs, for example, the entire menu authority may be set, or a certain item of the menu may be set, for example, AP01-MU01 may represent a certain menu of a certain application, AP01-MU01-IT01 may represent a certain menu item, if a sub-item authority is configured, the sub-item authority control may be used, and if a menu level is configured, the menu level authority control may be used.
And step S30, constructing an authority space according to the producer codes, the consumer codes and the authority expressions.
The producer codes, the consumer codes and the authority expressions are all associated with corresponding data resources, and then three-dimensional authority spaces are constructed according to the producer codes, the consumer codes and the authority expressions, wherein the producer codes, the consumer codes and the authority expressions are three groups of discrete variables.
After the authority space is constructed, if a person operates a certain data resource, the device determines whether the person has an authority expression corresponding to the data resource in the authority space, if so, the person is judged to contain the authority expression corresponding to the data resource, the authority expression is identified to determine the authority of the person to the data resource, and then, whether the operation belongs to the authority range is judged, and if so, the person can be judged to operate the resource data; if not, outputting prompt information with insufficient authority, for example, the data resource is a, the authority expression of the lie four pair a is UD, that is, the lie four pair a has the authority to read and delete, the operation performed by the lie four is updating, the updating operation does not belong to the authority range of the lie four pair a, and at this time, outputting prompt information with insufficient authority.
The data resources needing to be managed in the device also comprise a producer and a consumer, and both the producer and the consumer are expressed by chain coding, so that the relation of each level of organization is clearly identified, and the continuous updating of data results is avoided to expand and adapt to new requirements.
According to the invention, through the design of the authority space of the data resources to be managed by the device, the times of changing and upgrading the system of the device are reduced, the research and development cost is reduced, and the operation cost of data resource management is effectively reduced.
In the technical scheme provided by this embodiment, the device acquires each data resource, configures a producer code and a consumer code for each data resource, and determines an authority expression corresponding to each person according to the consumer code and the producer code, thereby constructing an authority space according to each generator code, consumer code and authority expression; because the permission space has only three dimensions, the configuration management of the permission is simpler, the organization personnel corresponding to the data resources can be read out through coding, the permission of the organization personnel to the data resources can be determined through the permission expression, the configuration work of the permission management is simplified, meanwhile, the permission space has enough flexibility due to the coding of the data resources and the permission expression of the personnel, the stability of the device is ensured, and the condition of system transformation caused by service change and permission change is avoided.
In order to achieve the above object, the present invention further provides an apparatus for creating an authority space, where the apparatus for creating an authority space includes a processor, a memory, and a program for creating an authority space stored in the memory and operable on the processor, and when the program for creating an authority space is executed by the processor, the method for creating an authority space according to the above embodiment is implemented.
To achieve the above object, the present invention further provides a computer-readable storage medium, wherein the computer-readable storage medium stores a creation program of an authority space, and the creation program of the authority space realizes the steps of the method for creating the authority space according to the above embodiment when executed by the processor.
The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments.
It should be noted that, in this document, the terms "comprises," "comprising," or any other variation thereof, are intended to cover a non-exclusive inclusion, such that a process, method, article, or apparatus that comprises a list of elements does not include only those elements but may include other elements not expressly listed or inherent to such process, method, article, or apparatus. Without further limitation, an element defined by the phrase "comprising an … …" does not exclude the presence of other like elements in a process, method, article, or apparatus that comprises the element.
Through the above description of the embodiments, those skilled in the art will clearly understand that the method of the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but in many cases, the former is a better implementation manner. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a computer-readable storage medium (such as ROM/RAM, magnetic disk, optical disk) as described above, and includes several instructions for enabling a terminal device (such as a mobile phone, a computer, a server, an air conditioner, or a network device) to execute the method according to the embodiments of the present invention.
The above description is only a preferred embodiment of the present invention, and not intended to limit the scope of the present invention, and all modifications of equivalent structures and equivalent processes, which are made by using the contents of the present specification and the accompanying drawings, or directly or indirectly applied to other related technical fields, are included in the scope of the present invention.
Claims (7)
1. A method for creating an authority space, the method comprising the steps of:
acquiring each data resource, and configuring a producer code and a consumer code for each data resource;
determining authority expressions of all the personnel according to the producer codes and the consumer codes;
constructing an authority space according to each producer code, consumer code and authority expression;
wherein the step of configuring a producer code for each of the data resources comprises:
sequentially using each data resource as a current data resource;
determining a second organizational hierarchy containing a second right to the current data resource, wherein the second right comprises a creation right, an update right, a deletion right and a read right;
determining whether the current data resource contains system access rights;
when the current data resource does not contain the system access right, coding the current data resource according to the second organization level to obtain a producer code corresponding to the current data resource;
when the current data resource contains the system access right, determining an application identifier corresponding to the system access right;
and coding the current data resource according to the application identifier and the second organization level so as to obtain a producer code corresponding to the current data resource.
2. The method of creating a rights space of claim 1 wherein said step of configuring a consumer code for each of said data resources comprises:
sequentially using each data resource as a current data resource;
determining a first organizational hierarchy containing a first right to the current data resource, wherein the first right comprises at least one of a read right and a delete right;
and coding the current data resource according to the first organization level so as to obtain a consumer code corresponding to the current data resource.
3. The method of creating a rights space of claim 2 wherein the step of determining the rights expression for each person from the consumer code comprises:
determining the first organization level and the first right corresponding to the consumer code;
and carrying out authority coding on each person corresponding to the first organization level according to the first authority so as to obtain an authority expression of each person corresponding to the first organization level.
4. The method of creating an entitlement space according to claim 1, wherein the step of determining the entitlement expression for each person from the producer code comprises:
determining the second organization level and the second authority corresponding to the producer code;
and carrying out authority coding on each person corresponding to the second organization level according to the second authority so as to obtain an authority expression of each person corresponding to the second organization level.
5. The creation method of the privilege space according to any one of claims 1 to 4, characterized in that the data resources comprise user information of individual persons.
6. An apparatus for creating an authority space, comprising a processor, a memory, and a program for creating an authority space stored in the memory and executable on the processor, wherein the program for creating an authority space realizes the steps of the method for creating an authority space according to any one of claims 1 to 5 when executed by the processor.
7. A computer-readable storage medium, characterized in that the computer-readable storage medium stores a creation program of an authority space, which realizes the respective steps of the creation method of an authority space according to any one of claims 1 to 5 when executed by a processor.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811588572.0A CN109740338B (en) | 2018-12-24 | 2018-12-24 | Method and device for creating permission space and computer-readable storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201811588572.0A CN109740338B (en) | 2018-12-24 | 2018-12-24 | Method and device for creating permission space and computer-readable storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN109740338A CN109740338A (en) | 2019-05-10 |
| CN109740338B true CN109740338B (en) | 2021-08-10 |
Family
ID=66359760
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201811588572.0A Active CN109740338B (en) | 2018-12-24 | 2018-12-24 | Method and device for creating permission space and computer-readable storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN109740338B (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103034790A (en) * | 2011-09-30 | 2013-04-10 | 上海博泰悦臻网络技术服务有限公司 | Service system and user permission activation method |
| CN105740656A (en) * | 2014-12-09 | 2016-07-06 | 航天信息股份有限公司 | Data authority management method and device |
| CN107657169A (en) * | 2017-10-10 | 2018-02-02 | 泰康保险集团股份有限公司 | Right management method, device, medium and electronic equipment |
| CN108985087A (en) * | 2018-07-23 | 2018-12-11 | 河北中科恒运软件科技股份有限公司 | A kind of permission multiple groups knit system management technical solution |
-
2018
- 2018-12-24 CN CN201811588572.0A patent/CN109740338B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN103034790A (en) * | 2011-09-30 | 2013-04-10 | 上海博泰悦臻网络技术服务有限公司 | Service system and user permission activation method |
| CN105740656A (en) * | 2014-12-09 | 2016-07-06 | 航天信息股份有限公司 | Data authority management method and device |
| CN107657169A (en) * | 2017-10-10 | 2018-02-02 | 泰康保险集团股份有限公司 | Right management method, device, medium and electronic equipment |
| CN108985087A (en) * | 2018-07-23 | 2018-12-11 | 河北中科恒运软件科技股份有限公司 | A kind of permission multiple groups knit system management technical solution |
Also Published As
| Publication number | Publication date |
|---|---|
| CN109740338A (en) | 2019-05-10 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN105187365A (en) | Method and device for access control based on roles and data items | |
| US8966576B2 (en) | Provisioning access control using SDDL on the basis of a XACML policy | |
| CN109522751B (en) | Access right control method and device, electronic equipment and computer readable medium | |
| CN106101113A (en) | A kind of cloud computing data security annotation management method and system | |
| EP3196798A1 (en) | Context-sensitive copy and paste block | |
| US11809813B1 (en) | Multilayered electronic content management system | |
| US11151088B2 (en) | Systems and methods for verifying performance of a modification request in a database system | |
| CN111464487B (en) | Access control method, device and system | |
| US10333939B2 (en) | System and method for authentication | |
| CN112199200B (en) | Resource scheduling method and device, computer equipment and storage medium | |
| CN113505378A (en) | Authority setting method, electronic equipment and computer storage medium | |
| US20220019687A1 (en) | Systems for and methods of data obfuscation | |
| US20240127379A1 (en) | Generating actionable information from documents | |
| CN109740338B (en) | Method and device for creating permission space and computer-readable storage medium | |
| CN111177700A (en) | Method and device for controlling row-level authority | |
| JP2006244177A (en) | Database device | |
| CN115543428A (en) | Simulated data generation method and device based on strategy template | |
| US11632375B2 (en) | Autonomous data source discovery | |
| CN114238273A (en) | Database management method, device, equipment and storage medium | |
| CN115905206A (en) | Multi-tenant data isolation method, device, equipment and storage medium | |
| CN113220762A (en) | Method, device, processor and storage medium for realizing general record processing of key service field change in big data application | |
| CN105550022A (en) | Business data processing method and apparatus | |
| CN111131205B (en) | Authority management method and device based on Restful interface | |
| CN111985902A (en) | Cross-system information collaborative management method, device, equipment and storage medium | |
| Akshaya et al. | SECURE MODERN WORKSPACE'S POLICY MANAGEMENT USING AZURE AI |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |