CN111552671A - Permission setting method, device and equipment of file directory and storage medium - Google Patents
Permission setting method, device and equipment of file directory and storage medium Download PDFInfo
- Publication number
- CN111552671A CN111552671A CN201911420512.2A CN201911420512A CN111552671A CN 111552671 A CN111552671 A CN 111552671A CN 201911420512 A CN201911420512 A CN 201911420512A CN 111552671 A CN111552671 A CN 111552671A
- Authority
- CN
- China
- Prior art keywords
- file directory
- authority
- account
- level
- directory
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
- 238000000034 method Methods 0.000 title claims abstract description 42
- 230000006870 function Effects 0.000 claims description 24
- 230000004044 response Effects 0.000 claims description 6
- 238000010586 diagram Methods 0.000 description 8
- 238000012545 processing Methods 0.000 description 6
- 230000008569 process Effects 0.000 description 5
- 238000005516 engineering process Methods 0.000 description 3
- 238000012546 transfer Methods 0.000 description 3
- 238000012217 deletion Methods 0.000 description 2
- 230000037430 deletion Effects 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 230000009286 beneficial effect Effects 0.000 description 1
- 238000004891 communication Methods 0.000 description 1
- 230000003247 decreasing effect Effects 0.000 description 1
- 230000006872 improvement Effects 0.000 description 1
- 230000004048 modification Effects 0.000 description 1
- 238000012986 modification Methods 0.000 description 1
- 239000007787 solid Substances 0.000 description 1
- 230000001360 synchronised effect Effects 0.000 description 1
- 230000001960 triggered effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/10—File systems; File servers
- G06F16/17—Details of further file system functions
- G06F16/176—Support for shared access to files; File sharing support
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Computer Security & Cryptography (AREA)
- Databases & Information Systems (AREA)
- Computer Hardware Design (AREA)
- Software Systems (AREA)
- Data Mining & Analysis (AREA)
- Health & Medical Sciences (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Information Retrieval, Db Structures And Fs Structures Therefor (AREA)
- Storage Device Security (AREA)
Abstract
The application discloses a method, a device, equipment and a storage medium for setting the authority of a file directory, and relates to the technical field of file management. The method comprises the following steps: opening the authority setting function of the ith-level file directory in the shared file system; receiving an authority setting instruction sent by an administrator account; and setting the member account of the i-level file directory and the operation authority of the member account to the object indicated by the file directory according to the authority setting instruction. The method realizes the hierarchical management of the file directory, wherein the administrator account of each hierarchy can set the member account of the hierarchy and the authority of the file directory of the member account, and the information safety and confidentiality are ensured.
Description
Technical Field
The present application relates to the field of file management technologies, and in particular, to a method, an apparatus, a device, and a storage medium for setting permissions of a file directory.
Background
Nowadays, shared file systems are widely used in enterprises or organizations, and due to the fact that the division of work of management personnel and employees in the enterprises or organizations is different, management of file rights is crucial in the use process of the shared file systems in view of information security and confidentiality.
Illustratively, the authority management of the shared file system can adopt a relationship of consistent upper and lower authorities, users are divided into different authority groups through a super administrator account, different authority groups are provided with different file directory authorities, and users in the same authority group only have one authority for all file directories.
However, the above-mentioned upper and lower level authority consistency relationship cannot realize hierarchical management of the file directory.
Disclosure of Invention
The embodiment of the application provides a method, a device, equipment and a storage medium for setting the authority of a file directory, and can realize hierarchical management on the file directory. The technical scheme is as follows:
according to an aspect of the present application, a method for setting permissions of a file directory is provided, which is applied to a shared file system, and the method includes:
opening the authority setting function of the ith-level file directory in the shared file system;
receiving an authority setting instruction sent by an administrator account of the i-level file directory, wherein the authority setting instruction is sent by the administrator account of the i-level file directory, and the administrator account comprises an administrator account of the i-level file directory set by a super administrator account in the shared file system;
and setting member accounts of the ith-level file directory and the operation authority of the member accounts on the object indicated by the file directory according to the authority setting instruction, wherein i is a non-negative integer.
According to another aspect of the present application, there is provided an authority setting apparatus for a file directory, which is applied to a shared file system, the apparatus including:
the function starting module is used for starting the authority setting function of the ith-level file directory in the shared file system;
the receiving module is used for receiving an authority setting instruction sent by an administrator account of the i-level file directory, wherein the authority setting instruction is sent by the administrator account of the i-level file directory, and the administrator account comprises an administrator account of the i-level file directory set by a super administrator account in the shared file system;
and the setting module is used for setting the member account of the i-th-level file directory and the operation authority of the member account to the object indicated by the file directory according to the authority setting instruction, wherein i is a non-negative integer.
According to another aspect of the present application, there is provided an electronic device including:
a memory, a processor coupled to the memory;
a processor configured to load and execute executable instructions stored in the memory to implement the method for setting permissions of a file directory as described in the above aspect and its optional embodiments.
According to another aspect of the present application, there is provided a computer-readable storage medium having at least one instruction, at least one program, code set, or instruction set stored therein, the at least one instruction, at least one program, code set, or instruction set being loaded and executed by a processor to implement the method for setting permissions of a file directory as described in the above one aspect and its optional embodiments.
The beneficial effects brought by the technical scheme provided by the embodiment of the application at least comprise:
the method can start the authority setting function of the i-level file directory, and set the member accounts of the i-level file directory and the operation authority of the member accounts to the object indicated by the file directory through the administrator accounts of the i-level file directory, thereby realizing the hierarchical management of the administrator accounts of the i-level file directory set by the super administrator account in the shared file system to the file directory, wherein the administrator account of each hierarchy can set the authority of the member accounts and the file directories of the member accounts, and ensuring the information security and confidentiality.
Drawings
In order to more clearly illustrate the technical solutions in the embodiments of the present application, the drawings needed to be used in the description of the embodiments are briefly introduced below, and it is obvious that the drawings in the following description are only some embodiments of the present application, and it is obvious for those skilled in the art to obtain other drawings based on these drawings without creative efforts.
FIG. 1 is an interface diagram illustrating setting of permissions for a file directory provided by an exemplary embodiment of the present application;
FIG. 2 is a block diagram of a shared file system provided by an exemplary embodiment of the present application;
fig. 3 is a flowchart of a method for setting permissions of a file directory according to an exemplary embodiment of the present application;
fig. 4 is a flowchart of a method for setting permissions of a file directory according to another exemplary embodiment of the present application;
fig. 5 is a flowchart of a method for setting permissions of a file directory according to another exemplary embodiment of the present application;
fig. 6 is a flowchart of a method for setting permissions of a file directory according to another exemplary embodiment of the present application;
fig. 7 is a block diagram of a device for setting permissions of a file directory according to an exemplary embodiment of the present application;
fig. 8 is a schematic structural diagram of a server according to an exemplary embodiment of the present application.
Detailed Description
To make the objects, technical solutions and advantages of the present application more clear, embodiments of the present application will be described in further detail below with reference to the accompanying drawings.
The explanations for words involved in this application are as follows:
sharing a file system: a system for realizing server cluster sharing a physical storage device. In a networked environment, the shared file system may transfer files to and from hosts of different operating systems, with little regard to network transfer and access details, accessing files on other server file systems on the network as well as local files.
File: refers to a collection of a set of information defined by the creator; illustratively, the file may be a text document, a picture, a program, and the like. Files typically have a file extension that indicates the file type; for example, picture files are often saved in Joint Photographic Experts Group (JPEG) format and the file extension is. jpg.
Folder: the system is used for assisting people in managing computer files, each folder corresponds to one disk space, and the folder provides addresses pointing to the corresponding disk space. The folder has no extension and may include the following types: documents, pictures, photo albums, music albums, etc.
Root directory: the initial file directory in each disk is referred to, for example, the root directory of the C disk is "C: \\ i.e., a directory of files that are displayed upon opening the C disk. All folders under the root directory are referred to as subdirectories under the root directory. The subdirectory amount can comprise a first-level subdirectory, a second-level subdirectory and the like, and a parent directory and a subdirectory can be formed between two adjacent file directories.
File directory authority: the method refers to the operation authority of a file directory owned by a member account using the file directory in a shared file system, wherein the operation authority comprises file viewing authority, directory editing authority and member management authority. The file viewing permission refers to permission of a member account for viewing contents in a file directory; the directory editing permission refers to the permission of the member account for editing the file directory and the permission of adding contents in the file directory; the member management authority refers to the authority for modifying the member account under the file directory and the authority owned by the member account.
The authority inheritance relationship is as follows: the relationship that the j +1 th level file directory inherits the member account of the j level file directory and the authority possessed by the member account is referred to, and j is a positive integer. For example, the first-level file directory includes two member accounts, namely a member account 1 and a member account 2, and the permissions possessed by the member account 1 and the member account 2 are directory editing permissions and file viewing permissions, the second-level file directory under the first-level file directory also includes the member account 1 and the member account 2, and the permissions possessed by the member account 1 and the member account 2 are directory editing permissions and file viewing permissions, and the first-level file directory and the second-level file directory have permission inheritance relationship.
Illustratively, a shared file system adopts a relationship of upper and lower level authority, in the shared file system, users are divided into different authority groups through a super administrator account, different authority groups are provided with different file directory authorities, wherein the users in the same authority group only have one authority for all file directories; however, the above-mentioned upper and lower level authority consistency relationship cannot realize hierarchical management of the file directory. Therefore, the application provides a method for setting the authority of the file directory so as to realize hierarchical management of the file directory. Referring to fig. 1, which is a schematic diagram illustrating an interface for setting permissions of file directories according to an exemplary embodiment of the present application, a super administrator account in a shared file system may set administrator accounts under file directories of various hierarchies. As shown in fig. 1, a setting interface 11 when the administrator account of the i-th level file directory sets the file directory authority owned by the member account is displayed on the display, a close control 12 for "inheriting the superior authority" is clicked, the authority inheritance relationship between the i-th level file directory and the superior level file directory is closed, and at the same time, the authority setting function for the i-th level file directory is started, that is, the authority selection control 14 corresponding to each member account 13 is operable, the administrator account can set the authority of the member account 13 through the authority selection control 14, for example, at least one of the file viewing authority, the directory editing authority, and the member management authority is granted to the member account 13.
Optionally, after the permission setting function is started, the setting interface 11 further includes a member adding control 15 and a member deleting control 16, and the addition or deletion of the use members of the i-th file directory can be realized through the member adding control 15 and the member deleting control 16.
The method realizes hierarchical management of the file directory through the administrator account of the i-level file directory set by the super administrator account in the shared file system, wherein the administrator account of each hierarchy can set the member account of the hierarchy and the authority of the file directory of the member account, and the information safety and confidentiality are ensured.
Referring to fig. 2, a schematic structural diagram of a shared file system 200 according to an exemplary embodiment of the present application is shown, where the shared file system 200 includes at least two servers 220.
The at least two servers 220 are connected through a wired or wireless network. And the at least two servers 220 share a physical storage device to implement file sharing.
Optionally, a tree-structured file directory is provided in the shared file system 200. The physical storage device of the shared file system 200 stores therein a program that is executed by a processor in any of the servers 220 to implement the method for setting the authority of the file directory provided by the present application.
Optionally, the physical storage device may include at least one of a Random Access Memory (RAM), a Read Only Memory (ROM), and a Flash Memory (Flash). Optionally, the processor may include one or more processing cores, such as a 4-core processor, an 8-core processor.
Referring to fig. 3, a flowchart of a method for setting permissions of file directories according to an exemplary embodiment of the present application is shown, where the method is applied to the shared file system shown in fig. 2, and the method includes:
Optionally, a display and an input device are arranged on the server; the method comprises the steps of displaying an authority setting interface of an ith-level file directory in a shared file system on a display, wherein the authority setting interface comprises a control with an authority setting function, and receiving starting operation triggered by a user on the control through input equipment so as to start the authority setting function of the ith-level file directory, wherein i is a non-negative integer. It should be noted that, when the value of i is 0, the file directory is the root directory.
Optionally, the input device may include a keyboard, a mouse, or a touch device; illustratively, the touch device may be a touch panel or a touch screen.
The authority setting function described above refers to a function for setting a member of the i-th-level file directory and an operation authority possessed by the member to the object indicated by the file directory. Optionally, when the value of i is a positive integer, the control may include a control of an authority inheritance relationship; the shared file system receives a closing instruction of the authority inheritance relationship, wherein the closing instruction is sent by an administrator account of an i-level file directory, and the closing instruction is generated according to a trigger event on a control of the authority inheritance relationship; and closing the permission inheritance relationship of the ith file directory according to the closing instruction, and opening the permission setting function of the ith file directory.
Illustratively, as shown in fig. 1, the trigger operation of the closing control 12 for receiving the permission inheritance relationship is received, and the permission inheritance relationship of the i-th level file directory is closed, and at the same time, the permission setting function of the i-th level file directory is started.
Optionally, the administrator of the i-th file directory includes an administrator account of the i-th file directory set by a super administrator account in the shared file system, where the super administrator account refers to an administrator account having directory management authority for each level of file directories including the root directory. The permission setting instruction is sent by an administrator account of the i-th level file directory.
Optionally, the permission setting instruction includes at least one of an operation permission of the reset member owned by the object indicated by the file directory, account information of the newly added member account, and a deleted member account. The account information of the new member account includes the new member account and the operation authority of the new member to the object indicated by the file directory.
Watch 1
Optionally, the permission setting instruction includes account information of a newly added member account of the i-th level file directory; the shared file system responds to a received permission setting instruction sent by an administrator account, adds the newly added member account into the member account of the i-level file directory according to the account information of the newly added member account, and sets the operation permission of the newly added member account on the object indicated by the file directory; and automatically synchronizing the newly added member account and the operation authority of the newly added member account on the object indicated by the file directory into the member accounts of the file directories of the (i + 1) th level and the lower level.
Illustratively, a permission list of a file directory is stored in the shared file system, for example, in table one, the member accounts of the secondary directory include a member account number one and a member account number two, the shared file system responds to a permission setting instruction sent by the member account number one to add the member account number three to the member accounts of the secondary directory, the added permission of the member account number three includes a directory viewing permission and a directory editing permission, for example, in table two, the permission list of the file directory is automatically synchronized to the tertiary directory.
Watch two
It should be noted that the added member account of the i-th level file directory is a member account of the previous level file directory.
Optionally, the permission setting instruction includes a member account deleted from the i-th file directory; the shared file system deletes the member account in the member account of the i-level file directory and deletes the operation authority of the member account to the object indicated by the file directory in response to receiving the authority setting instruction sent by the administrator account; and synchronously deleting the deleted member accounts in the member accounts of the file directories of the (i + 1) th level and the lower level in response to the deleted member accounts included in the member accounts of the file directories of the (i + 1) th level and the lower level.
Illustratively, based on table two, the permission setting instruction includes a member account number two in the secondary directory, and the shared file system deletes the member account number two in the secondary directory in response to receiving the permission setting instruction sent by the administrator account, and deletes the permission of the member account number two correspondingly, for example, in table three, deletes the member account number two in the tertiary directory synchronously.
Watch III
Illustratively, as shown in fig. 1, the member account number of the i-th level file directory may be increased through a member addition control 15, and may be decreased through a member deletion control 16; the operation authority of the object indicated by the file directory owned by the member account can be set through the authority selection control 14.
Optionally, the operation authority of the member account for the object indicated by the file directory includes at least one of a directory viewing authority, a directory editing authority, and a member management authority. The object indicated by the file directory includes a folder or a file.
Illustratively, on the ith-level file directory, the member account having the directory viewing authority can view the folder or file indicated by the ith-level file directory; the member account with the directory editing authority can create a new folder or a new file in the indicating folder of the i-th file directory, or modify the name of the indicating folder, or modify the name, the content and the like of the indicating file; the member account with the member management authority can add or delete the member account of the i-level file directory, and does not include other administrator accounts with the member management authority.
In summary, the permission setting method for the file directory provided in this embodiment may open a permission setting function of the i-th level file directory, and set the member account of the i-th level file directory and the operation permission of the object indicated by the member account for the file directory through the administrator account of the i-th level file directory, so as to implement hierarchical management of the file directory by the administrator account of the i-th level file directory set by the super administrator account in the shared file system, where the administrator account of each hierarchy may set the permissions of the member account and the file directory of the member account, and ensure information security and confidentiality.
And secondly, the method is also provided with a superior-subordinate permission inheritance relationship, and gives consideration to both permission inheritance and hierarchical management in the shared file system, so that the permission inheritance improves the permission management efficiency, simplifies the permission setting operation process, and realizes the hierarchical management of the permission of the file directory.
Based on fig. 3, if a member account of the ith-level file directory has directory editing authority, the member account may create an i +1 th-level file directory under the ith-level file directory, for example, as shown in fig. 4, after step 303, step 304 to step 305 may be added, as follows:
And the creating instruction is used for indicating the shared file system to create an i +1 th level file directory under the i-th level file directory, and the creating instruction is sent by a member account with directory editing authority of the i-th level file directory.
Illustratively, the creating instruction instructs the shared file system to create an i +1 th level file directory under the i-th level file directory, and synchronously generate a folder or a file indicated by the i +1 th level file directory in the folder indicated by the i-th level file directory; or, the creation instruction instructs the shared file system to create a folder or a file in the folder indicated by the ith-level file directory, and generates an i + 1-level file directory corresponding to the created folder or file in the ith-level file directory.
Optionally, before responding that the created member account of the i +1 th level file directory does not have member management authority, after the i +1 th level file directory is created, the shared file system further automatically opens an authority inheritance relationship of the i +1 th level file directory, where the authority inheritance relationship of the i +1 th level file directory is used to indicate that the i +1 th level file directory inherits the member account of the i th level file directory and the operation authority, which is owned by the member account, of the object indicated by the file directory.
The shared file system obtains the member account of the i-th level file directory and the operation authority of the member account for the object indicated by the file directory in a table look-up mode, and gives the member account and the operation authority to the i + 1-th level file directory, and in the process, if the created member account of the i + 1-th level file directory does not have member management authority, the shared file system simultaneously gives the created member account member management authority to the i + 1-th level file directory.
Illustratively, as shown in fig. 5, the members of the primary directory in the shared file system include zhang three and lie four, where zhang three and lie four have corresponding member accounts, and only member names are shown in the figure; the user rights comprise viewable (directory viewing rights) and editable (namely directory editing rights); a second-level directory is created by the member accounts corresponding to Zhang III, and the user permission of the first-level directory is inherited by default, namely the member accounts corresponding to Zhang III and Li IV still have the user permission to be checked and edited; the member account corresponding to Zhang III is also endowed with manageable (i.e. administrator management authority) authority as the created member account of the secondary directory.
A third-level directory is created by the member account corresponding to Liqu, and the user permission of the second-level directory is inherited by default, namely the member account corresponding to Zhang III has the permission of viewing, editing and managing, and the member account corresponding to Liqu has the permission of viewing and editing; the member account corresponding to lie four is also endowed with manageable authority as the creating member account of the third-level directory.
It should be further noted that, based on fig. 5, the member accounts of the primary directory in the shared file system include member accounts corresponding to zhang san and lie si; adding member accounts corresponding to wang five in the member accounts of the primary catalog, as shown in fig. 6, wherein only member names are shown in the figure; under the condition that the authority inheritance relationship is opened, the shared file system adds the member account corresponding to the fifth-class directory to the member accounts of the second-class directory and the third-class directory.
In summary, in the method for setting permissions of a file directory provided by this embodiment, a higher-level and lower-level permission inheritance relationships are further set, permission inheritance and hierarchical management are both considered in a shared file system, the permission inheritance improves the permission management efficiency, simplifies the permission setting operation process, and realizes hierarchical management of the permissions of the file directory.
Referring to fig. 7, a block diagram of a device for setting permissions of a file directory according to an exemplary embodiment of the present application is shown, where the device is applied to a shared file system; the device is realized by software, hardware or a combination of the two to become a part or all of the server, and comprises:
a function starting module 401, configured to start an authority setting function of an i-th level file directory in the shared file system;
a receiving module 402, configured to receive an authority setting instruction sent by an administrator account of an i-th level file directory, where the authority setting instruction is sent by the administrator account of the i-th level file directory, and the administrator account includes an administrator account of the i-th level file directory set by a super administrator account in a shared file system;
a setting module 403, configured to set, according to the permission setting instruction, a member account of the i-th level file directory and an operation permission of the member account for the object indicated by the file directory, where i is a non-negative integer.
In some embodiments of the present invention, the,
a receiving module 402, configured to receive a creating instruction of a file directory, where the creating instruction is used to instruct a shared file system to create an i +1 th-level file directory under an i-th-level file directory, and the creating instruction is sent by a member account of the i-th-level file directory that has a directory editing right;
the setting module 403 is configured to, in response to that the created member account of the (i + 1) th level file directory does not have a member management authority, automatically increase the member management authority of the created member account on the (i + 1) th level file directory.
In some embodiments, the setting module 403 is configured to automatically open a permission inheritance relationship of the i +1 th level file directory, where the permission inheritance relationship of the i +1 th level file directory is used to indicate that the i +1 th level file directory inherits a member account of the i-th level file directory and an operation permission, which is possessed by the member account, of an object indicated by the file directory.
In some embodiments, the permission setting instruction comprises account information of the newly added member account of the ith-level file directory;
a setting module 403, configured to add a new member account to a member account of the i-th level file directory according to the account information, and set an operation permission owned by the new member account for an object indicated by the file directory; and automatically synchronizing the newly added member account and the operation authority of the newly added member account on the object indicated by the file directory into the member accounts of the file directories of the (i + 1) th level and the lower levels.
In some embodiments, if the value of i is a positive integer, the function starting module 401 includes:
the receiving submodule 4011 is configured to receive a closing instruction of the permission inheritance relationship, where the closing instruction is sent by an administrator account of the i-th file directory;
the relationship closing submodule 4012 is configured to close the permission inheritance relationship of the i-th level file directory according to the closing instruction, and open a permission setting function of the i-th level file directory.
In summary, the permission setting device for a file directory provided in this embodiment may start a permission setting function of an i-th level file directory, and set a member account of the i-th level file directory and an operation permission of an object indicated by the file directory, which is owned by the member account, through an administrator account of the i-th level file directory, thereby implementing hierarchical management of the file directory by the administrator account of the i-th level file directory set by a super administrator account in a shared file system, where the administrator account of each hierarchy may set permissions of the member account and the file directory of the member account, and ensuring information security and confidentiality.
And secondly, the device is also provided with an upper-level and lower-level authority inheritance relationship, so that both the authority inheritance and the hierarchical management are considered in the shared file system, the low authority management efficiency is improved through the authority inheritance, the authority setting operation process is simplified, and the hierarchical management of the authority of the file directory is realized.
Referring to fig. 8, a schematic structural diagram of a server according to an embodiment of the present application is shown. The server is used for implementing the authority setting method of the file directory provided in the above embodiment. Specifically, the method comprises the following steps:
the server 500 includes a CPU (Central Processing Unit) 501, a system Memory 504 including a RAM (Random Access Memory) 502 and a ROM (Read-Only Memory) 503, and a system bus 505 connecting the system Memory 504 and the Central Processing Unit 501. The server 500 also includes a basic I/O (Input/Output) system 506 that facilitates information transfer between devices within the computer, and a mass storage device 507 for storing an operating system 513, application programs 514, and other program modules 515.
The basic input/output system 506 comprises a display 508 for displaying information and an input device 509, such as a mouse, keyboard, etc., for user input of information. Wherein the display 508 and the input device 509 are connected to the central processing unit 501 through an input output controller 510 connected to the system bus 505. The basic input/output system 506 may also include an input/output controller 510 for receiving and processing input from a number of other devices, such as a keyboard, mouse, or electronic stylus. Similarly, input-output controller 510 also provides output to a display screen, a printer, or other type of output device.
The mass storage device 507 is connected to the central processing unit 501 through a mass storage controller (not shown) connected to the system bus 505. The mass storage device 507 and its associated computer-readable media provide non-volatile storage for the server 500. That is, the mass storage device 507 may include a computer-readable medium (not shown) such as a hard disk or a CD-ROM (Compact disk Read-Only Memory) drive.
Without loss of generality, the computer-readable media may comprise computer storage media and communication media. Computer storage media includes volatile and nonvolatile, removable and non-removable media implemented in any method or technology for storage of information such as computer readable instructions, data structures, program modules or other data. Computer storage media includes RAM, ROM, EPROM (Erasable Programmable Read-Only Memory), EEPROM (Electrically Erasable Programmable Read-Only Memory), Flash Memory (Flash Memory) or other solid state Memory technology, CD-ROM, DVD (Digital versatile disk) or other optical storage, magnetic cassettes, magnetic tape, magnetic disk storage or other magnetic storage devices. Of course, those skilled in the art will appreciate that the computer storage media is not limited to the foregoing. The system memory 504 and mass storage device 507 described above may be collectively referred to as memory.
The server 500 may also operate as a remote computer connected to a network via a network, such as the internet, according to various embodiments of the present application. That is, the server 500 may be connected to the network 512 through the network interface unit 511 connected to the system bus 505, or may be connected to other types of networks or remote computer systems (not shown) using the network interface unit 511.
The above-mentioned serial numbers of the embodiments of the present application are merely for description and do not represent the merits of the embodiments.
It will be understood by those skilled in the art that all or part of the steps for implementing the above embodiments may be implemented by hardware, or may be implemented by a program instructing relevant hardware, where the program may be stored in a computer-readable storage medium, and the above-mentioned storage medium may be a read-only memory, a magnetic disk or an optical disk, etc.
The above description is only exemplary of the present application and should not be taken as limiting, as any modification, equivalent replacement, or improvement made within the spirit and principle of the present application should be included in the protection scope of the present application.
Claims (10)
1. A method for setting authority of a file directory is applied to a shared file system, and comprises the following steps:
opening the authority setting function of the ith-level file directory in the shared file system;
receiving an authority setting instruction sent by an administrator account, wherein the authority setting instruction is sent by the administrator account of the i-th level file directory, and the administrator account comprises the administrator account of the i-th level file directory set by a super administrator account in the shared file system;
and setting the member account of the i-th-level file directory and the operation authority of the member account to the object indicated by the file directory according to the authority setting instruction, wherein i is a non-negative integer.
2. The method of claim 1, further comprising:
receiving a creating instruction of a file directory, wherein the creating instruction is used for indicating the shared file system to create an i + 1-th level file directory under the i-th level file directory, and the creating instruction is sent by a member account with directory editing authority of the i-th level file directory;
and in response to that the created member account of the i +1 th level file directory does not have member management authority, automatically increasing the member management authority of the created member account to the i +1 th level file directory.
3. The method of claim 2, further comprising:
and automatically opening the permission inheritance relationship of the (i + 1) th level file directory, wherein the permission inheritance relationship of the (i + 1) th level file directory is used for indicating the (i + 1) th level file directory to inherit the member account of the (i) th level file directory and the operation permission of the member account to the object indicated by the file directory.
4. The method according to any one of claims 1 to 3, wherein the permission setting instruction comprises account information of newly added member accounts of the i-th level file directory;
the setting of the member account of the i-th-level file directory and the operation authority of the member account to the object indicated by the file directory according to the authority setting instruction includes:
adding the new member account into the member account of the i-level file directory according to the account information, and setting the operation authority of the new member account on the object indicated by the file directory;
and automatically synchronizing the newly added member account and the operation authority of the newly added member account on the object indicated by the file directory into the member accounts of the file directories of the (i + 1) th level and the lower levels.
5. The method according to any one of claims 1 to 3, wherein when the value of i is a positive integer, the opening of the permission setting function of the ith-level file directory in the shared file system includes:
receiving a closing instruction of the authority inheritance relationship, wherein the closing instruction is sent by the administrator account of the i-level file directory;
and closing the permission inheritance relationship of the ith level file directory according to the closing instruction, and opening the permission setting function of the ith level file directory.
6. An authority setting device for a file directory, applied to a shared file system, the device comprising:
the function starting module is used for starting the authority setting function of the ith-level file directory in the shared file system;
a receiving module, configured to receive an authority setting instruction sent by an administrator account of the i-th file directory, where the authority setting instruction is sent by the administrator account of the i-th file directory, and the administrator account includes an administrator account of the i-th file directory set by a super administrator account in the shared file system;
and the setting module is used for setting the member accounts of the i-th-level file directory and the operation permissions of the member accounts on the objects indicated by the file directory according to the permission setting instruction, wherein i is a non-negative integer.
7. The apparatus of claim 6,
the receiving module is used for receiving a creation instruction of a file directory, wherein the creation instruction is used for indicating the shared file system to create an i + 1-level file directory under the i-level file directory, and the creation instruction is sent by a member account with directory editing authority of the i-level file directory;
the setting module is used for responding that the created member account of the (i + 1) th level file directory does not have member management authority, and automatically increasing the member management authority of the created member account to the (i + 1) th level file directory.
8. The apparatus of claim 7,
the setting module is used for automatically opening the permission inheritance relationship of the (i + 1) th level file directory, and the permission inheritance relationship of the (i + 1) th level file directory is used for indicating the (i + 1) th level file directory to inherit the member account of the (i) th level file directory and the operation permission of the member account to the object indicated by the file directory.
9. An electronic device, characterized in that the electronic device comprises:
a memory, a processor coupled to the memory;
the processor is configured to load and execute the executable instructions stored in the memory to implement the method of setting permissions of a file directory as claimed in any one of claims 1 to 5.
10. A computer readable storage medium having stored therein at least one instruction, at least one program, set of codes, or set of instructions; the at least one instruction, the at least one program, the set of codes, or the set of instructions are loaded and executed by a processor to implement the method of setting permissions of a file directory as claimed in any of claims 1 to 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201911420512.2A CN111552671B (en) | 2019-12-31 | 2019-12-31 | File directory authority setting method, device, equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201911420512.2A CN111552671B (en) | 2019-12-31 | 2019-12-31 | File directory authority setting method, device, equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN111552671A true CN111552671A (en) | 2020-08-18 |
| CN111552671B CN111552671B (en) | 2024-01-05 |
Family
ID=72005632
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201911420512.2A Active CN111552671B (en) | 2019-12-31 | 2019-12-31 | File directory authority setting method, device, equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN111552671B (en) |
Cited By (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN113986160A (en) * | 2021-12-24 | 2022-01-28 | 北京辰光融信技术有限公司 | Mobile printing method and system |
| CN115248933A (en) * | 2021-04-26 | 2022-10-28 | 北京字跳网络技术有限公司 | Authority setting method, device, equipment and medium |
Citations (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6202066B1 (en) * | 1997-11-19 | 2001-03-13 | The United States Of America As Represented By The Secretary Of Commerce | Implementation of role/group permission association using object access type |
| US20110047185A1 (en) * | 2006-01-25 | 2011-02-24 | At&T Corp. | Meta-data indexing for xpath location steps |
| CN102271141A (en) * | 2011-09-13 | 2011-12-07 | 大连佳姆信息安全软件技术有限公司 | Electronic file permission dynamic adaptive control method and system |
| US8627068B1 (en) * | 2005-04-29 | 2014-01-07 | Hewlett-Packard Development Company, L. P. | Selecting access authorities |
| US20150256526A1 (en) * | 2013-10-18 | 2015-09-10 | GB & Smtih SARL | Matrix security management system for managing user accounts and security settings |
| CN105426776A (en) * | 2015-11-13 | 2016-03-23 | 浪潮软件集团有限公司 | Electronic document management device and method |
| CN105975876A (en) * | 2016-06-29 | 2016-09-28 | 北京小米移动软件有限公司 | File sharing method and device |
| CN107220558A (en) * | 2017-05-24 | 2017-09-29 | 郑州云海信息技术有限公司 | A kind of method of rights management, apparatus and system |
| CN108614976A (en) * | 2018-04-28 | 2018-10-02 | 苏州科达科技股份有限公司 | Authority configuring method, device and storage medium |
| CN109002730A (en) * | 2018-07-26 | 2018-12-14 | 郑州云海信息技术有限公司 | A kind of file system directories right management method, device, equipment and storage medium |
| CN109344650A (en) * | 2018-09-25 | 2019-02-15 | 郑州云海信息技术有限公司 | A kind of file permission management method, system and the relevant apparatus of file system |
| CN109829330A (en) * | 2018-12-28 | 2019-05-31 | 恒生电子股份有限公司 | A kind of svn authority setting method, device, system, electronic equipment |
| CN109858278A (en) * | 2019-01-14 | 2019-06-07 | 世纪龙信息网络有限责任公司 | File permission setting method, device, computer equipment and storage medium |
| CN109948350A (en) * | 2019-01-18 | 2019-06-28 | 深圳市万睿智能科技有限公司 | A kind of hierarchical organization structure account authority distributing method and its system and storage medium |
| CN110162960A (en) * | 2019-05-22 | 2019-08-23 | 陕西中达公路技术服务有限公司 | A kind of method for verifying authority based on user management |
| CN110442354A (en) * | 2019-07-30 | 2019-11-12 | 南京市晨枭软件技术有限公司 | A kind of software method for cleaning and device |
-
2019
- 2019-12-31 CN CN201911420512.2A patent/CN111552671B/en active Active
Patent Citations (16)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US6202066B1 (en) * | 1997-11-19 | 2001-03-13 | The United States Of America As Represented By The Secretary Of Commerce | Implementation of role/group permission association using object access type |
| US8627068B1 (en) * | 2005-04-29 | 2014-01-07 | Hewlett-Packard Development Company, L. P. | Selecting access authorities |
| US20110047185A1 (en) * | 2006-01-25 | 2011-02-24 | At&T Corp. | Meta-data indexing for xpath location steps |
| CN102271141A (en) * | 2011-09-13 | 2011-12-07 | 大连佳姆信息安全软件技术有限公司 | Electronic file permission dynamic adaptive control method and system |
| US20150256526A1 (en) * | 2013-10-18 | 2015-09-10 | GB & Smtih SARL | Matrix security management system for managing user accounts and security settings |
| CN105426776A (en) * | 2015-11-13 | 2016-03-23 | 浪潮软件集团有限公司 | Electronic document management device and method |
| CN105975876A (en) * | 2016-06-29 | 2016-09-28 | 北京小米移动软件有限公司 | File sharing method and device |
| CN107220558A (en) * | 2017-05-24 | 2017-09-29 | 郑州云海信息技术有限公司 | A kind of method of rights management, apparatus and system |
| CN108614976A (en) * | 2018-04-28 | 2018-10-02 | 苏州科达科技股份有限公司 | Authority configuring method, device and storage medium |
| CN109002730A (en) * | 2018-07-26 | 2018-12-14 | 郑州云海信息技术有限公司 | A kind of file system directories right management method, device, equipment and storage medium |
| CN109344650A (en) * | 2018-09-25 | 2019-02-15 | 郑州云海信息技术有限公司 | A kind of file permission management method, system and the relevant apparatus of file system |
| CN109829330A (en) * | 2018-12-28 | 2019-05-31 | 恒生电子股份有限公司 | A kind of svn authority setting method, device, system, electronic equipment |
| CN109858278A (en) * | 2019-01-14 | 2019-06-07 | 世纪龙信息网络有限责任公司 | File permission setting method, device, computer equipment and storage medium |
| CN109948350A (en) * | 2019-01-18 | 2019-06-28 | 深圳市万睿智能科技有限公司 | A kind of hierarchical organization structure account authority distributing method and its system and storage medium |
| CN110162960A (en) * | 2019-05-22 | 2019-08-23 | 陕西中达公路技术服务有限公司 | A kind of method for verifying authority based on user management |
| CN110442354A (en) * | 2019-07-30 | 2019-11-12 | 南京市晨枭软件技术有限公司 | A kind of software method for cleaning and device |
Non-Patent Citations (1)
| Title |
|---|
| 李福申等: ""中国联通大ERP管理信息系统"", 《科技成果》 * |
Cited By (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN115248933A (en) * | 2021-04-26 | 2022-10-28 | 北京字跳网络技术有限公司 | Authority setting method, device, equipment and medium |
| WO2022228084A1 (en) * | 2021-04-26 | 2022-11-03 | 北京字跳网络技术有限公司 | Permission setting method and apparatus, device, and medium |
| CN115248933B (en) * | 2021-04-26 | 2024-06-11 | 北京字跳网络技术有限公司 | Authority setting method, device, equipment and medium |
| CN113986160A (en) * | 2021-12-24 | 2022-01-28 | 北京辰光融信技术有限公司 | Mobile printing method and system |
Also Published As
| Publication number | Publication date |
|---|---|
| CN111552671B (en) | 2024-01-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11768810B2 (en) | Flexible permission management framework for cloud attached file systems | |
| US10547684B2 (en) | Information management of data associated with multiple cloud services | |
| US10318542B2 (en) | Information management of mobile device data | |
| US9959333B2 (en) | Unified access to personal data | |
| US9396209B2 (en) | Selecting storage cloud for storage of entity files from plurality of storage clouds | |
| US8880466B2 (en) | System and method for storage operation access security | |
| KR101120755B1 (en) | System and method for virtual folder and item sharing including utilization of static and dynamic lists | |
| US9183212B2 (en) | Representing directory structure in content-addressable storage systems | |
| JP7355964B2 (en) | External location synchronization | |
| CN111552671B (en) | File directory authority setting method, device, equipment and storage medium | |
| US20160259783A1 (en) | Computer system | |
| Perkins Coie LLP | ||
| CN113448921A (en) | Storage management method, device and storage system | |
| JP7355959B2 (en) | External location synchronization | |
| Krenz et al. | Google Drive security considerations in an academic and research space |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |