CN110750559A - Authority information processing method and device, storage medium and electronic device - Google Patents

Authority information processing method and device, storage medium and electronic device Download PDF

Info

Publication number
CN110750559A
CN110750559A CN201910989863.9A CN201910989863A CN110750559A CN 110750559 A CN110750559 A CN 110750559A CN 201910989863 A CN201910989863 A CN 201910989863A CN 110750559 A CN110750559 A CN 110750559A
Authority
CN
China
Prior art keywords
information
authority
target object
query statement
authority information
Prior art date
Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
Withdrawn
Application number
CN201910989863.9A
Other languages
Chinese (zh)
Inventor
石慧江
于政
王道广
袁灿
Current Assignee (The listed assignees may be inaccurate. Google has not performed a legal analysis and makes no representation or warranty as to the accuracy of the list.)
Beijing Mininglamp Software System Co ltd
Original Assignee
Beijing Mininglamp Software System Co ltd
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by Beijing Mininglamp Software System Co ltd filed Critical Beijing Mininglamp Software System Co ltd
Priority to CN201910989863.9A priority Critical patent/CN110750559A/en
Publication of CN110750559A publication Critical patent/CN110750559A/en
Withdrawn legal-status Critical Current

Links

Images

Classifications

    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F16/00Information retrieval; Database structures therefor; File system structures therefor
    • G06F16/20Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
    • G06F16/24Querying
    • G06F16/245Query processing
    • G06F16/2452Query translation
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F21/00Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F21/60Protecting data
    • G06F21/62Protecting access to data via a platform, e.g. using keys or access control rules
    • G06F21/6218Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
    • G06F21/6227Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database where protection concerns the structure of data, e.g. records, types, queries
    • GPHYSICS
    • G06COMPUTING; CALCULATING OR COUNTING
    • G06FELECTRIC DIGITAL DATA PROCESSING
    • G06F2221/00Indexing scheme relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/21Indexing scheme relating to G06F21/00 and subgroups addressing additional information or applications relating to security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
    • G06F2221/2141Access rights, e.g. capability lists, access control lists, access tables, access matrices

Landscapes

  • Engineering & Computer Science (AREA)
  • Theoretical Computer Science (AREA)
  • General Physics & Mathematics (AREA)
  • Databases & Information Systems (AREA)
  • Physics & Mathematics (AREA)
  • General Engineering & Computer Science (AREA)
  • Health & Medical Sciences (AREA)
  • Data Mining & Analysis (AREA)
  • Computational Linguistics (AREA)
  • Bioethics (AREA)
  • General Health & Medical Sciences (AREA)
  • Computer Hardware Design (AREA)
  • Computer Security & Cryptography (AREA)
  • Software Systems (AREA)
  • Storage Device Security (AREA)
  • Information Retrieval, Db Structures And Fs Structures Therefor (AREA)

Abstract

The invention provides a method and a device for processing authority information, a storage medium and an electronic device, wherein the method comprises the following steps: acquiring problem information of a target object and authority information of the target object; converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement; or, the problem information is converted into a second query statement, and after a second result corresponding to the problem information is queried in the graph database according to the second query statement, the second result corresponding to the authority information is screened from the second result according to the authority information.

Description

Authority information processing method and device, storage medium and electronic device
Technical Field
The present invention relates to the field of communications, and in particular, to a method and an apparatus for processing permission information, a storage medium, and an electronic apparatus.
Background
When the plurality of types of data are stored separately in the related art, the data sources are generally physically isolated. For example, data between departments of a company are respectively stored in a plurality of data sources, the method has the advantages of being simple to implement, being capable of conveniently achieving data isolation, not needing to invade data, having obvious defects due to the fact that the data are isolated from each other due to the fact that the data are not related to each other if the data of the departments possibly having the related relation cannot be related to each other.
In the related art, problems such as authority of an object which presents a problem cannot be effectively considered when problem analysis is carried out, and an effective technical scheme is not provided yet.
Disclosure of Invention
The embodiment of the invention provides a method and a device for processing authority information, a storage medium and an electronic device, which are used for at least solving the problems that the authority of a problem-proposing object cannot be effectively considered when problem analysis is carried out in the related art.
According to an embodiment of the present invention, there is provided a method for processing rights information, including: acquiring problem information of a target object and authority information of the target object; converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement; or converting the question information into a second query statement, and after querying a second result corresponding to the question information in the graph database according to the second query statement, screening the second result corresponding to the authority information from the second result according to the authority information.
In the embodiment of the present invention, the obtaining of the authority information of the target object at least includes one of the following: acquiring target object information of the target object, and acquiring the authority information from an authority system according to the target object information; and acquiring temporary authorization information aiming at the target object, and acquiring the authority information from the temporary authorization information.
In this embodiment of the present invention, the target object information includes at least one of the following: the user group information of the target object and the role information of the target object, wherein different user group information corresponds to different authority information, and different role information corresponds to different authority information.
In the embodiment of the present invention, converting the question information and the authority information into a first query statement includes: analyzing the authority information and converting the authority information into a query condition; and converting the query condition and the question information into the first query statement.
According to another embodiment of the present invention, there is also provided a processing apparatus of authority information, including: the system comprises an acquisition module, a storage module and a processing module, wherein the acquisition module is used for acquiring the problem information of a target object and the authority information of the target object; the processing module is used for converting the question information and the authority information into a first query statement and querying a first result corresponding to the question information in a graph database according to the first query statement; or converting the question information into a second query statement, and after querying a second result corresponding to the question information in the graph database according to the second query statement, screening the second result corresponding to the authority information from the second result according to the authority information.
In an embodiment of the present invention, the obtaining module is configured to perform at least one of the following: acquiring target object information of the target object, and acquiring the authority information from an authority system according to the target object information; and acquiring temporary authorization information aiming at the target object, and acquiring the authority information from the temporary authorization information.
In this embodiment of the present invention, the target object information includes at least one of the following: the user group information of the target object and the role information of the target object, wherein different user group information corresponds to different authority information, and different role information corresponds to different authority information.
In the embodiment of the present invention, the processing module is further configured to analyze the authority information and convert the authority information into a query condition; and converting the query condition and the question information into the first query statement.
According to a further embodiment of the present invention, there is also provided a storage medium having a computer program stored therein, wherein the computer program is arranged to perform the steps of any of the above method embodiments when executed.
According to yet another embodiment of the present invention, there is also provided an electronic device, including a memory in which a computer program is stored and a processor configured to execute the computer program to perform the steps in any of the above method embodiments.
According to the invention, the problem information of the target object and the authority information of the target object are obtained; converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement; or, the problem information is converted into a second query statement, and a second result corresponding to the authority information is screened from the second result according to the authority information after the second result corresponding to the problem information is queried in the graph database according to the second query statement.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the invention without limiting the invention. In the drawings:
fig. 1 is a block diagram of a hardware structure of a mobile terminal of a method for processing rights information according to an embodiment of the present invention;
fig. 2 is a flowchart of a processing method of rights information according to an embodiment of the present invention;
fig. 3 is a block diagram of a configuration of a rights information processing apparatus according to an embodiment of the present invention;
fig. 4 is another flowchart of a method of processing rights information according to an alternative embodiment of the present invention.
Detailed Description
The invention will be described in detail hereinafter with reference to the accompanying drawings in conjunction with embodiments. It should be noted that the embodiments and features of the embodiments in the present application may be combined with each other without conflict.
It should be noted that the terms "first," "second," and the like in the description and claims of the present invention and in the drawings described above are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order.
It should be noted that, when a traditional relational database is used as a data source to construct an application, the purpose of data authority control can be achieved by conveniently controlling access of a database table. In a non-relational database, such as a graph database, which is a kind of non-relational database, the data storage manner is organized in the form of points and edges, wherein the points are generally called "entities", the edges are generally called "relations", and the "entity-relation" can well describe the relation between things and is commonly used for constructing a knowledge graph. Unlike traditional relational database with the concept of a base table, the database only has one large table, all information is stored in a relational network, and entities are connected through relations, so that the entity data is difficult to be subjected to fine authority control.
The question-answering system has obvious advantages by using a database as a data source, because the question-answering system belongs to one type of search, such as who the wife who asks bigue is, the search converted into the database is (entity: ' bigue ', ' relationship: ' couple '), and the data stored in the database is of such a structure, so the search is very convenient.
The question-answering system can also be divided into a plurality of types, one type is externally disclosed, the data related to the answering result is comprehensively opened, and the condition generally does not need authority control; the other is for the use of personnel in the enterprise, the enterprise data generally belongs to confidential data and is not easy to open to the outside, and the access to the related data in the enterprise also generally has strict authority control. The application is mainly directed to the authority control of the question-answering system used in enterprises.
And under the condition of adopting a single data source, the data intrusion through the authority information is also an implementation means of authority control. The method specifically comprises the steps of firstly, manually determining authority hierarchical data, namely, levels of 1, 2, 3 and 4 are divided, and when entity data are imported, manually writing the authority hierarchical data into the entity data by embedding an authority attribute in the entity data. The method can really realize fine control on data.
Although the above scheme can solve the problem of authority control of data well, there are two disadvantages: firstly, data intrusion is needed, and the integrity of the data is damaged; secondly, since the authority belongs to the static data divided in advance, the extension of the authority is limited to a certain extent, and in order to solve the above technical problem, the following description is made with reference to the technical solutions of the embodiments.
The method provided by the embodiment of the application can be executed in a mobile terminal, a computer terminal or a similar operation device. Taking an example of the present invention running on a mobile terminal, fig. 1 is a block diagram of a hardware structure of the mobile terminal of a method for processing authority information according to an embodiment of the present invention. As shown in fig. 1, the mobile terminal 10 may include one or more (only one shown in fig. 1) processors 102 (the processor 102 may include, but is not limited to, a processing device such as a microprocessor MCU or a programmable logic device FPGA) and a memory 104 for storing data, and optionally may also include a transmission device 106 for communication functions and an input-output device 108. It will be understood by those skilled in the art that the structure shown in fig. 1 is only an illustration, and does not limit the structure of the mobile terminal. For example, the mobile terminal 10 may also include more or fewer components than shown in FIG. 1, or have a different configuration with equivalent functionality to that shown in FIG. 1 or more functionality than that shown in FIG. 1.
The memory 104 may be used to store computer programs, for example, software programs and modules of application software, such as computer programs corresponding to the method for processing authority information in the embodiment of the present invention, and the processor 102 executes various functional applications and data processing by running the computer programs stored in the memory 104, so as to implement the method described above. The memory 104 may include high speed random access memory, and may also include non-volatile memory, such as one or more magnetic storage devices, flash memory, or other non-volatile solid-state memory. In some instances, the memory 104 may further include memory located remotely from the processor 102, which may be connected to the mobile terminal 10 via a network. Examples of such networks include, but are not limited to, the internet, intranets, local area networks, mobile communication networks, and combinations thereof.
The transmission device 106 is used for receiving or transmitting data via a network. Specific examples of the network described above may include a wireless network provided by a communication provider of the mobile terminal 10. In one example, the transmission device 106 includes a Network adapter (NIC), which can be connected to other Network devices through a base station so as to communicate with the internet. In one example, the transmission device 106 may be a Radio Frequency (RF) module, which is used for communicating with the internet in a wireless manner.
In the present embodiment, a method for processing permission information running on the mobile terminal is provided, and fig. 2 is a flowchart of a method for processing permission information according to an embodiment of the present invention, as shown in fig. 2, the flowchart includes the following steps:
step S202, acquiring problem information of a target object and authority information of the target object;
step S204, converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement; or converting the question information into a second query statement, and after querying a second result corresponding to the question information in the graph database according to the second query statement, screening the second result corresponding to the authority information from the second result according to the authority information.
According to the invention, the problem information of the target object and the authority information of the target object are obtained; converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement; or, the problem information is converted into a second query statement, and a second result corresponding to the authority information is screened from the second result according to the authority information after the second result corresponding to the problem information is queried in the graph database according to the second query statement.
In the embodiment of the present invention, the obtaining of the authority information of the target object at least includes one of the following: acquiring target object information of the target object, and acquiring the authority information from an authority system according to the target object information; and acquiring temporary authorization information aiming at the target object, and acquiring the authority information from the temporary authorization information.
In this embodiment of the present invention, the target object information includes at least one of the following: the user group information of the target object and the role information of the target object, wherein different user group information corresponds to different authority information, and different role information corresponds to different authority information.
In the embodiment of the present invention, converting the question information and the authority information into a first query statement includes: analyzing the authority information and converting the authority information into a query condition; and converting the query condition and the question information into the first query statement.
In the embodiment of the present invention, request information for changing the rights, which is sent by the target object, may also be received, and the saved rights information is updated in the case that the request information passes.
In the embodiment of the invention, the question information and the authority information are converted into a first query statement, and a first result corresponding to the question information is queried in a graph database according to the first query statement; or, after converting the question information into a second query statement and querying a second result corresponding to the question information in the graph database according to the second query statement, and screening the second result corresponding to the authority information from the second result according to the authority information, the method further includes: and if the first result and/or the second result cannot be found, reporting the problem information and the authority information to a network side or other positions to search the first result and/or the second result.
Therefore, the embodiment of the invention provides an entity data control scheme which is extensible and does not need to invade entity data, and the scheme has the following advantages: the data access authority can be expanded or contracted through authorization without physically isolating a data source.
Through the technical scheme recorded in the embodiment of the invention, a set of extensible authority system without entity data intrusion is constructed, and the definition of the authority is not a specific value any more, but a data screening logic. The authority verification can be performed in two places, the first is to convert the user authority information into screening conditions to participate in query when accessing data; and secondly, inquiring in advance according to original conditions of the problems to obtain result data, and filtering again through analyzing the authority logic information, wherein the screened data is the data meeting the authority. And the scheme can also enlarge or shrink the access right to the data through authorization.
The following describes the processing flow of the authority information with reference to another optional example, where the example of the present invention mainly includes the following steps:
the following first describes the users, user groups, roles, authorization information and permissions in the system.
First, the user is the user of the question-answering system, and the description contains the basic information of the user. After the user is created, the user can be endowed with corresponding roles and user group information. As shown in table 1 below, the user group and the role are directly associated with the privilege information, and the user obtains a specific privilege through the user group and the role.
User id User information 1 User information 2 ... User information n
TABLE 1
And II, explanation: the user group and the role are similar and are all intermediate sets for associating users and authorities, the user group comprises a certain amount of authority information, and the role can also comprise a certain amount of authority information. As shown in Table 2 below, the user group resembles a department of an enterprise, the role resembles a post of the enterprise, and the user obtains the rights data through the user group and the role.
TABLE 2
Explanation three: the authority information contains specific authority data and is a set of logic which can be directly converted into query conditions. The authority data here is logical data, not a static authority value. As shown in table 3 below, for example: { 'Label' & '1' & 'department of sale' }. The logical data format may be custom, but must be parsable.
Authority id Rights logic data
TABLE 3
And (4) explaining the fourth step: the authorization is a type belonging to temporary extended authority, and generally has short-term property, and as shown in the following table 4, the authorization can grant the authority to the user for temporary use.
Authorization id Authority id
TABLE 4
Based on the above description, as shown in fig. 4, an alternative embodiment of the present invention includes the following implementation steps:
step 1: asking questions by the user; the questions and the user information proposed by the user enter a question-answering system, the question-answering system converts the questions into query sentences of a query graph database through the steps of word segmentation, problem intention analysis, parameter extraction and the like, and the query sentences obtained in the step are query sentences of the questions.
Step 2: reading user authority information; and sending a request to the authority system through the user information to obtain the authority data of the user. The authority data not only includes authority information obtained from user group and role, but also includes authority information obtained from authorization, and finally obtains an authority list.
And step 3: transferring the authority information to a query condition; and converting the authority information into a query condition and adding the query condition to the query statement. And finally, submitting the complete query statement to a graph database for query to obtain a result.
For step 3, another optional implementation manner may also be included, where data is queried first and then screened in the result according to the authority; the step three is to convert the authority information into the query condition to directly participate in the query, and the result does not need to be processed for the second time. In the step, the problem result is firstly inquired, and then the secondary processing is carried out on the result data through the authority information screening data, so that the final result data is obtained.
The technical scheme of the invention can achieve the effect of authority control on the data in the graph database on the basis of not invading data and not destroying the integrity of the data, and compared with the prior art, the invention can form a set of question-answering system solution with authority control by externally accessing an authority system.
Through the above description of the embodiments, those skilled in the art can clearly understand that the method according to the above embodiments can be implemented by software plus a necessary general hardware platform, and certainly can also be implemented by hardware, but the former is a better implementation mode in many cases. Based on such understanding, the technical solutions of the present invention may be embodied in the form of a software product, which is stored in a storage medium (e.g., ROM/RAM, magnetic disk, optical disk) and includes instructions for enabling a terminal device (e.g., a mobile phone, a computer, a server, or a network device) to execute the method according to the embodiments of the present invention.
In this embodiment, a device for processing permission information is further provided, where the device is used to implement the foregoing embodiments and preferred embodiments, and details are not repeated after the description is given. As used below, the term "module" may be a combination of software and/or hardware that implements a predetermined function. Although the means described in the embodiments below are preferably implemented in software, an implementation in hardware, or a combination of software and hardware is also possible and contemplated.
Fig. 3 is a block diagram of a configuration of a rights information processing apparatus according to an embodiment of the present invention, as shown in fig. 3, the apparatus including:
an obtaining module 30, configured to obtain question information of a target object and authority information of the target object;
the processing module 32 is configured to convert the question information and the permission information into a first query statement, and query a first result corresponding to the question information in a graph database according to the first query statement; or converting the question information into a second query statement, and after querying a second result corresponding to the question information in the graph database according to the second query statement, screening the second result corresponding to the authority information from the second result according to the authority information.
According to the invention, the problem information of the target object and the authority information of the target object are obtained; converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement; or, the problem information is converted into a second query statement, and a second result corresponding to the authority information is screened from the second result according to the authority information after the second result corresponding to the problem information is queried in the graph database according to the second query statement.
In this embodiment of the present invention, the obtaining module 30 is configured to execute at least one of the following: acquiring target object information of the target object, and acquiring the authority information from an authority system according to the target object information; and acquiring temporary authorization information aiming at the target object, and acquiring the authority information from the temporary authorization information.
In this embodiment of the present invention, the target object information includes at least one of the following: the user group information of the target object and the role information of the target object, wherein different user group information corresponds to different authority information, and different role information corresponds to different authority information.
In this embodiment of the present invention, the processing module 32 is further configured to analyze the authority information and convert the authority information into a query condition; and converting the query condition and the question information into the first query statement.
In this embodiment of the present invention, the processing module 32 is further configured to receive request information for changing the rights, which is sent by the target object, and update the stored rights information when the request information passes through.
In the embodiment of the invention, the question information and the authority information are converted into a first query statement, and a first result corresponding to the question information is queried in a graph database according to the first query statement; or, the processing module 32 is further configured to report the question information and the authority information to a network side or other locations to search for the first result and/or the second result if the first result and/or the second result cannot be found, after the question information is converted into the second query statement and the second result corresponding to the question information is screened from the second result according to the authority information after the second result corresponding to the question information is queried in the graph database according to the second query statement.
It should be noted that, the above modules may be implemented by software or hardware, and for the latter, the following may be implemented, but not limited to: the modules are all positioned in the same processor; alternatively, the modules are respectively located in different processors in any combination.
Embodiments of the present invention also provide a storage medium having a computer program stored therein, wherein the computer program is arranged to perform the steps of any of the above method embodiments when executed.
Alternatively, in the present embodiment, the storage medium may be configured to store a computer program for executing the steps of:
s1, acquiring the question information of the target object and the authority information of the target object;
s2, converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement; or converting the question information into a second query statement, and after querying a second result corresponding to the question information in the graph database according to the second query statement, screening the second result corresponding to the authority information from the second result according to the authority information.
Optionally, in this embodiment, the storage medium may include, but is not limited to: various media capable of storing computer programs, such as a usb disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic disk, or an optical disk.
Embodiments of the present invention also provide an electronic device comprising a memory having a computer program stored therein and a processor arranged to run the computer program to perform the steps of any of the above method embodiments.
Optionally, the electronic apparatus may further include a transmission device and an input/output device, wherein the transmission device is connected to the processor, and the input/output device is connected to the processor.
Optionally, in this embodiment, the processor may be configured to execute the following steps by a computer program:
s1, acquiring the question information of the target object and the authority information of the target object;
s2, converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement; or converting the question information into a second query statement, and after querying a second result corresponding to the question information in the graph database according to the second query statement, screening the second result corresponding to the authority information from the second result according to the authority information.
Optionally, the specific examples in this embodiment may refer to the examples described in the above embodiments and optional implementation manners, and this embodiment is not described herein again.
It will be apparent to those skilled in the art that the modules or steps of the present invention described above may be implemented by a general purpose computing device, they may be centralized on a single computing device or distributed across a network of multiple computing devices, and alternatively, they may be implemented by program code executable by a computing device, such that they may be stored in a storage device and executed by a computing device, and in some cases, the steps shown or described may be performed in an order different than that described herein, or they may be separately fabricated into individual integrated circuit modules, or multiple ones of them may be fabricated into a single integrated circuit module. Thus, the present invention is not limited to any specific combination of hardware and software.
The above description is only a preferred embodiment of the present invention and is not intended to limit the present invention, and various modifications and changes may be made by those skilled in the art. Any modification, equivalent replacement, or improvement made within the principle of the present invention should be included in the protection scope of the present invention.

Claims (10)

1. A method for processing authority information is characterized by comprising the following steps:
acquiring problem information of a target object and authority information of the target object;
converting the question information and the authority information into a first query statement, and querying a first result corresponding to the question information in a graph database according to the first query statement;
or converting the question information into a second query statement, and after querying a second result corresponding to the question information in the graph database according to the second query statement, screening the second result corresponding to the authority information from the second result according to the authority information.
2. The method of claim 1, wherein obtaining the rights information of the target object comprises at least one of:
acquiring target object information of the target object, and acquiring the authority information from an authority system according to the target object information;
and acquiring temporary authorization information aiming at the target object, and acquiring the authority information from the temporary authorization information.
3. The method of claim 2, wherein the target object information includes at least one of:
the user group information of the target object and the role information of the target object, wherein different user group information corresponds to different authority information, and different role information corresponds to different authority information.
4. The method of claim 1, wherein translating the question information and the permission information into a first query statement comprises:
analyzing the authority information and converting the authority information into a query condition;
and converting the query condition and the question information into the first query statement.
5. An apparatus for processing rights information, comprising:
the system comprises an acquisition module, a storage module and a processing module, wherein the acquisition module is used for acquiring the problem information of a target object and the authority information of the target object;
the processing module is used for converting the question information and the authority information into a first query statement and querying a first result corresponding to the question information in a graph database according to the first query statement; or converting the question information into a second query statement, and after querying a second result corresponding to the question information in the graph database according to the second query statement, screening the second result corresponding to the authority information from the second result according to the authority information.
6. The apparatus of claim 5, wherein the obtaining module is configured to perform at least one of:
acquiring target object information of the target object, and acquiring the authority information from an authority system according to the target object information;
and acquiring temporary authorization information aiming at the target object, and acquiring the authority information from the temporary authorization information.
7. The apparatus of claim 6, wherein the target object information comprises at least one of:
the user group information of the target object and the role information of the target object, wherein different user group information corresponds to different authority information, and different role information corresponds to different authority information.
8. The device of claim 5, wherein the processing module is further configured to parse the permission information and convert the permission information into a query condition; and converting the query condition and the question information into the first query statement.
9. A computer-readable storage medium, in which a computer program is stored, wherein the computer program is configured to carry out the method of any one of claims 1 to 4 when executed.
10. An electronic device comprising a memory and a processor, wherein the memory has stored therein a computer program, and wherein the processor is arranged to execute the computer program to perform the method of any of claims 1 to 4.
CN201910989863.9A 2019-10-17 2019-10-17 Authority information processing method and device, storage medium and electronic device Withdrawn CN110750559A (en)

Priority Applications (1)

Application Number Priority Date Filing Date Title
CN201910989863.9A CN110750559A (en) 2019-10-17 2019-10-17 Authority information processing method and device, storage medium and electronic device

Applications Claiming Priority (1)

Application Number Priority Date Filing Date Title
CN201910989863.9A CN110750559A (en) 2019-10-17 2019-10-17 Authority information processing method and device, storage medium and electronic device

Publications (1)

Publication Number Publication Date
CN110750559A true CN110750559A (en) 2020-02-04

Family

ID=69278781

Family Applications (1)

Application Number Title Priority Date Filing Date
CN201910989863.9A Withdrawn CN110750559A (en) 2019-10-17 2019-10-17 Authority information processing method and device, storage medium and electronic device

Country Status (1)

Country Link
CN (1) CN110750559A (en)

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112597518A (en) * 2020-12-26 2021-04-02 中国农业银行股份有限公司 Graph database-based authority management method, device and equipment
CN112613075A (en) * 2020-12-31 2021-04-06 北京安华金和科技有限公司 Permission determination method and device, storage medium and electronic device
CN113282651A (en) * 2021-04-25 2021-08-20 青岛海尔科技有限公司 Data processing method and device, storage medium and electronic device
CN112597518B (en) * 2020-12-26 2024-06-11 中国农业银行股份有限公司 Rights management method, device and equipment based on graph database

Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101710348A (en) * 2009-12-29 2010-05-19 金蝶软件(中国)有限公司 Document data query method and server
CN102214235A (en) * 2011-06-29 2011-10-12 浪潮集团山东通用软件有限公司 Method for integrating enterprise management software with search engine based on real-time authority control
CN106897273A (en) * 2017-04-12 2017-06-27 福州大学 A kind of network security dynamic early-warning method of knowledge based collection of illustrative plates
US20190057297A1 (en) * 2017-08-17 2019-02-21 Microsoft Technology Licensing, Llc Leveraging knowledge base of groups in mining organizational data
CN109739873A (en) * 2018-12-27 2019-05-10 广州市玄武无线科技股份有限公司 A kind of business datum querying method, device, equipment and readable storage medium storing program for executing
CN110222165A (en) * 2019-06-14 2019-09-10 言图科技有限公司 The method and system of employee's daily management is realized based on instant chat

Patent Citations (6)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101710348A (en) * 2009-12-29 2010-05-19 金蝶软件(中国)有限公司 Document data query method and server
CN102214235A (en) * 2011-06-29 2011-10-12 浪潮集团山东通用软件有限公司 Method for integrating enterprise management software with search engine based on real-time authority control
CN106897273A (en) * 2017-04-12 2017-06-27 福州大学 A kind of network security dynamic early-warning method of knowledge based collection of illustrative plates
US20190057297A1 (en) * 2017-08-17 2019-02-21 Microsoft Technology Licensing, Llc Leveraging knowledge base of groups in mining organizational data
CN109739873A (en) * 2018-12-27 2019-05-10 广州市玄武无线科技股份有限公司 A kind of business datum querying method, device, equipment and readable storage medium storing program for executing
CN110222165A (en) * 2019-06-14 2019-09-10 言图科技有限公司 The method and system of employee's daily management is realized based on instant chat

Cited By (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN112597518A (en) * 2020-12-26 2021-04-02 中国农业银行股份有限公司 Graph database-based authority management method, device and equipment
CN112597518B (en) * 2020-12-26 2024-06-11 中国农业银行股份有限公司 Rights management method, device and equipment based on graph database
CN112613075A (en) * 2020-12-31 2021-04-06 北京安华金和科技有限公司 Permission determination method and device, storage medium and electronic device
CN113282651A (en) * 2021-04-25 2021-08-20 青岛海尔科技有限公司 Data processing method and device, storage medium and electronic device

Similar Documents

Publication Publication Date Title
EP2565802B1 (en) Data masking setup
CN109739873A (en) A kind of business datum querying method, device, equipment and readable storage medium storing program for executing
CN107465692B (en) Unified user identity authentication method, system and storage medium
US10362052B2 (en) Generating a virtual database to test data security of a real database
US20120290544A1 (en) Data compliance management
CN108427748A (en) Distributed data base secondary index querying method, device and server
CN114691786A (en) Method and device for determining data blood relationship, storage medium and electronic device
CN110750559A (en) Authority information processing method and device, storage medium and electronic device
CN110147361A (en) The system and method for master data coding rule maintenance function are realized under big data environment
CN109408488A (en) A kind of science data information consulting service platform
CN112965979A (en) User behavior analysis method and device and electronic equipment
CN113282599A (en) Data synchronization method and system
CN103036726A (en) Method and device for network user management
CN111177700A (en) Method and device for controlling row-level authority
US10003492B2 (en) Systems and methods for managing data related to network elements from multiple sources
CN113742369B (en) Data authority management method, system and storage medium
CN111008220A (en) Dynamic identification method and device of data source, storage medium and electronic device
CN110825729A (en) Data query method and device, storage medium and electronic device
CN115344582A (en) Metadata management method and device, electronic equipment and computer storage medium
CN103714066B (en) Database analysis device based on template
CN115048379A (en) Statistical method, terminal device and computer-readable storage medium
CN112667632A (en) Metadata processing method and device
CN111539691A (en) Intelligent design comprehensive service system for power distribution engineering and use method
CN106294433A (en) Facility information processing method and processing device
US20150234826A1 (en) System and method for validating and formatting ip right identifiers

Legal Events

Date Code Title Description
PB01 Publication
PB01 Publication
SE01 Entry into force of request for substantive examination
SE01 Entry into force of request for substantive examination
WW01 Invention patent application withdrawn after publication

Application publication date: 20200204

WW01 Invention patent application withdrawn after publication