CN112182011B - Data operation method, device, electronic equipment and storage medium - Google Patents
Data operation method, device, electronic equipment and storage medium Download PDFInfo
- Publication number
- CN112182011B CN112182011B CN202011037816.3A CN202011037816A CN112182011B CN 112182011 B CN112182011 B CN 112182011B CN 202011037816 A CN202011037816 A CN 202011037816A CN 112182011 B CN112182011 B CN 112182011B
- Authority
- CN
- China
- Prior art keywords
- data
- target
- data table
- target operation
- authority
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F16/00—Information retrieval; Database structures therefor; File system structures therefor
- G06F16/20—Information retrieval; Database structures therefor; File system structures therefor of structured data, e.g. relational data
- G06F16/24—Querying
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/30—Authentication, i.e. establishing the identity or authorisation of security principals
- G06F21/45—Structures or tools for the administration of authentication
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
-
- Y—GENERAL TAGGING OF NEW TECHNOLOGICAL DEVELOPMENTS; GENERAL TAGGING OF CROSS-SECTIONAL TECHNOLOGIES SPANNING OVER SEVERAL SECTIONS OF THE IPC; TECHNICAL SUBJECTS COVERED BY FORMER USPC CROSS-REFERENCE ART COLLECTIONS [XRACs] AND DIGESTS
- Y02—TECHNOLOGIES OR APPLICATIONS FOR MITIGATION OR ADAPTATION AGAINST CLIMATE CHANGE
- Y02D—CLIMATE CHANGE MITIGATION TECHNOLOGIES IN INFORMATION AND COMMUNICATION TECHNOLOGIES [ICT], I.E. INFORMATION AND COMMUNICATION TECHNOLOGIES AIMING AT THE REDUCTION OF THEIR OWN ENERGY USE
- Y02D10/00—Energy efficient computing, e.g. low power processors, power management or thermal management
Abstract
The application relates to big data technology, and discloses a data operation method, which comprises the following steps: receiving a data operation request of a user, wherein the data operation request comprises a target operation and a target operation data table; acquiring an operation authority data table determined according to the role information of the user; selecting an operation authority data table matched with the target operation as a matched operation data table; inquiring the target operation data in a target operation data table and judging whether the target operation data exists in the matching operation data table or not; if the target operation data exist, carrying out data processing on the target operation data; and if the target operation data does not exist, sending an operation prompt for prohibiting the execution of the target operation. The application also provides a data operation device and a storage medium. Furthermore, the present application also relates to blockchain techniques, and the target operation data table may be stored in a blockchain node. The application can improve the efficiency and the safety of data operation.
Description
Technical Field
The present application relates to the field of big data technologies, and in particular, to a data operation method, a device, an electronic apparatus, and a computer readable storage medium.
Background
In the prior art, when data in a system is operated, different data operation authorities are generally configured for different users, for example, in a medical management system, doctors in different departments can only check cases of patients in departments of the departments, but a lead layer in a courtyard level can check all cases, and patients can only check related cases of the patients in the management system. And the security of the stored data in the system is improved through the division of the data operation authority. However, when the data operation is performed in this way, the data operation needs to be performed again by the query role each time the data operation request is received, so that the efficiency of the data operation is low; and, when one user has a plurality of roles, it may result in successful execution of an operation exceeding the data authority corresponding to a certain specific role, so that the security of the data operation is lowered.
Disclosure of Invention
The application provides a data operation method, a data operation device, an electronic device and a computer readable storage medium, and mainly aims to improve the efficiency and the safety of data operation.
In order to achieve the above object, the present application provides a data manipulation method, including:
receiving a data operation request of a user, wherein the data operation request comprises a target operation and a target operation data table;
acquiring at least two operation authority data tables which are determined in advance according to the role information of the user;
selecting an operation authority data table matched with the target operation from the at least two operation authority data as a matched operation data table;
inquiring target operation data in the target operation data table and judging whether the target operation data exists in the matching operation data table or not;
if the target operation data exists in the matching operation data table, carrying out data processing on the target operation data according to the target operation;
and if the target operation data does not exist in the matching operation data table, sending an operation prompt for prohibiting the execution of the target operation.
Optionally, before the receiving the data operation request of the user, the method further includes:
acquiring role information of the user;
determining the operation authority of the user according to the role information of the user, wherein the operation authority comprises a permission operation and a permission operation data table corresponding to the permission operation;
and if the number of the license operations is at least two and the number of the license operation data tables corresponding to each license operation is at least two, merging the license operation data tables corresponding to different types of license operations into different operation permission data tables respectively, and obtaining at least two operation permission data tables corresponding to the user.
Optionally, the merging the license operation data tables corresponding to different types of license operations into different operation authority data tables respectively includes:
when the permission operation is a query operation, merging repeated data in a plurality of permission operation data tables corresponding to the query operation to obtain an operation authority data table for the query operation; or alternatively
And when the permission operation is a pruning operation, collecting a plurality of permission operation data tables corresponding to the pruning operation as a pruning data table, and deleting repeated data in the pruning data table to obtain an operation authority data table for the pruning operation.
Optionally, the determining the operation authority of the user according to the role information of the user includes:
acquiring a role identification field contained in the role information;
and determining the operation authority of the user according to the role identification field.
Optionally, the selecting, from the at least two operation authority data, an operation authority data table matched with the target operation as a matching operation data table includes:
if the target operation is a query operation, selecting an operation authority data table used for the query operation from the at least two operation authority data tables as the matching operation data table; or alternatively
And if the target operation is a pruning operation, selecting an operation authority data table for the pruning operation from the at least two operation authority data tables as the matching operation data table.
Optionally, the querying the target operation data table for the target operation data and determining whether the target operation data exists in the matching operation data table includes:
generating a target query statement according to the target operation data table and the target operation data;
generating sub-query sentences according to the target operation data and the matching operation data table;
combining the sub-query statement as constraint conditions of the target query statement with the target query statement to obtain a data query statement;
executing the data query statement to obtain a result data set;
if the result data set is not empty, determining that the target operation data exists in the matching operation data table;
and if the result data set is empty, determining that the target operation data does not exist in the matching operation data table.
Optionally, the performing data processing on the target operation data according to the target operation includes:
if the target operation is a query operation, returning the target operation data to the user terminal equipment;
and if the target operation is a deletion operation, deleting or modifying the target operation data.
In order to solve the above-mentioned problems, the present application also provides a data manipulation device comprising:
the data operation request receiving module is used for receiving a data operation request of a user, wherein the data operation request comprises a target operation and a target operation data table;
the operation authority acquisition module is used for acquiring at least two operation authority data tables which are determined in advance according to the role information of the user;
the matching operation data table determining module is used for selecting an operation authority data table matched with the target operation from the at least two operation authority data as a matching operation data table;
the target operation data judging module is used for inquiring target operation data in the target operation data table and judging whether the target operation data exists in the matching operation data table or not;
the data processing module is used for carrying out data processing on the target operation data according to the target operation if the target operation data exist in the matching operation data table;
and the reminding module is used for sending an operation reminding for prohibiting the execution of the target operation if the target operation data does not exist in the matching operation data table.
In order to solve the above-mentioned problems, the present application also provides an electronic apparatus including:
a memory storing at least one computer program instruction; a kind of electronic device with high-pressure air-conditioning system
And a processor executing the computer program instructions stored in the memory to implement the data manipulation method described above.
In order to solve the above-described problems, the present application also provides a computer-readable storage medium storing a computer program that is executed by a processor to implement the above-described data manipulation method.
After receiving a data operation request of a user, the data operation request comprises a target operation data table and a target operation data table, at least two operation authority data tables which are determined in advance according to role information of the user are obtained, whether to perform target operation on target operation data in the target operation table is directly determined according to the at least two operation authority data tables, roles of the user are not required to be obtained each time, authorities are determined according to the roles of the user, and then data operation is performed according to the authorities, so that efficiency of data operation is improved; meanwhile, when determining whether to perform the target operation, the embodiment of the application selects the operation authority data table matched with the target operation from at least two operation authority data as the matched operation data table, and determines whether to perform the target operation according to whether the target operation data exists in the matched operation data table, rather than performing the target operation when the target operation exists in the target operation data table, thereby improving the safety of the operation data. Therefore, the data operation method, the data operation device and the computer readable storage medium can realize the aim of efficient and safe data operation.
Drawings
FIG. 1 is a flow chart of a data operation method according to an embodiment of the application;
FIG. 2 is a schematic block diagram of a data manipulation device according to an embodiment of the present application;
fig. 3 is a schematic diagram of an internal structure of an electronic device for implementing a data operation method according to an embodiment of the present application;
the achievement of the objects, functional features and advantages of the present application will be further described with reference to the accompanying drawings, in conjunction with the embodiments.
Detailed Description
It should be understood that the specific embodiments described herein are for purposes of illustration only and are not intended to limit the scope of the application.
The embodiment of the application provides a data operation method. The execution subject of the data operation method includes, but is not limited to, at least one of a server, a terminal, and the like, which can be configured to execute the method provided by the embodiment of the application. In other words, the data manipulation method may be performed by software or hardware installed at a terminal device or a server device, and the software may be a blockchain platform. The service end includes but is not limited to: a single server, a server cluster, a cloud server or a cloud server cluster, and the like.
Referring to fig. 1, a flow chart of a data operation method according to an embodiment of the application is shown. In this embodiment, the data operation method includes:
s1, receiving a data operation request of a user, wherein the data operation request comprises a target operation and a target operation data table.
In this embodiment, the data operation request of the user may be a data operation request triggered by the user based on the operation of the system client or the front-end page, for example, a data operation request for checking data of a certain subsystem, or deleting a certain piece of data, etc.
Wherein the data operation request includes a target operation and a target operation data table. The target operation is a specific operation performed on the data by a user, and comprises a query operation and a pruning operation (comprising a modification operation or a deletion operation); the target operation data table is a data table relating to an operation object corresponding to the target operation, that is, target operation data.
Preferably, the target operation data table is stored in a node of a blockchain.
By storing the target operation data table in the blockchain, the security of the target operation data table can be improved.
Specifically, the data operation request may include a plurality of parameters related to the data operation request, such as a module code, a user ID, a table name, a field name, a start time, an end time, a specified operation, and the like.
Optionally, in the embodiment of the present application, the target operation may further determine a target operation according to a designated role ID in the parameter set, including: judging whether the designated role ID is empty or not; if the designated role ID is empty, determining the target operation as a query operation; and if the designated role ID is not null, determining that the target operation is a pruning operation.
S2, acquiring at least two operation authority data tables which are determined in advance according to the role information of the user.
Preferably, before receiving a data operation request of a user, determining at least two operation authority data tables corresponding to the user according to role information of the user. At least two operation authority data tables corresponding to the user can be directly obtained when the data operation request of the user is received each time.
For example, when a user is created, at least two operation right data tables corresponding to the user are determined according to roles assigned to the user.
Preferably, before receiving the data operation request of the user, the method further comprises:
and determining at least two operation authority data tables corresponding to the user according to the role information of the user.
The determining at least two operation authority data tables corresponding to the user according to the role information of the user comprises:
acquiring role information of the user;
determining the operation authority of the user according to the role information of the user, wherein the operation authority comprises a permission operation and a permission operation data table corresponding to the permission operation;
and if the number of the license operations is at least two and the number of the license operation data tables corresponding to each license operation is at least two, merging the license operation data tables corresponding to different types of license operations into different operation permission data tables respectively, and obtaining at least two operation permission data tables corresponding to the user.
Wherein the role information is a set of all roles owned by the user.
Preferably, the permission operation in the embodiment of the present application includes a query operation and a pruning operation. The operation authority data table correspondingly comprises an operation authority data table for inquiring operation and an operation authority data table for deleting operation.
Further, the determining the operation authority of the user according to the role information of the user includes:
acquiring a role identification field contained in the role information;
and determining the operation authority of the user according to the role identification field.
Preferably, the merging the license operation data tables corresponding to different types of license operations into different operation authority data tables respectively includes:
when the permission operation is a query operation, merging repeated data in a plurality of permission operation data tables corresponding to the query operation to obtain an operation authority data table for the query operation;
and when the permission operation is a pruning operation, collecting a plurality of permission operation data tables corresponding to the pruning operation as a pruning data table, and deleting repeated data in the pruning data table to obtain an operation authority data table for the pruning operation.
In the embodiment of the application, when the data operation is performed, the data operation can be directly limited according to the operation authority data without paying attention to the roles owned by the user, thereby improving the efficiency of the data operation.
S3, selecting an operation authority data table matched with the target operation from the at least two operation authority data as a matched operation data table.
In detail, the selecting the operation authority data table matched with the target operation from the at least two operation authority data as a matched operation data table includes:
if the target operation is a query operation, selecting an operation authority data table used for the query operation from the at least two operation authority data tables as the matching operation data table; or alternatively
And if the target operation is a pruning operation, selecting an operation authority data table for the pruning operation from the at least two operation authority data tables as the matching operation data table.
S4, inquiring target operation data in the target operation data table and judging whether the target operation data in the matching operation data table.
In the embodiment of the present application, the target operation data is specific data that needs to be operated in the data operation request, and is also an operation object corresponding to the target operation.
In detail, the S4 includes:
generating a target query statement according to the target operation data table and the target operation data;
generating sub-query sentences according to the target operation data and the matching operation data table;
combining the sub-query statement as constraint conditions of the target query statement with the target query statement to obtain a data query statement;
executing the data query statement to obtain a result data set;
if the result data set is not empty, determining that the target operation data exists in the matching operation data table;
and if the result data set is empty, determining that the target operation data does not exist in the matching operation data table.
S5, if the target operation data exist in the matching operation data table, carrying out data processing on the target operation data according to the target operation.
In this embodiment, if the target operation data exists in the matching operation data table, it indicates that the user has a corresponding operation authority for the target operation data, and further data processing may be performed on the target operation data.
In detail, the data processing of the target operation data according to the target operation includes:
if the target operation is a query operation, returning the target operation data to the user terminal equipment;
and if the target operation is a deletion operation, deleting or modifying the target operation data.
And S6, if the target operation data does not exist in the matching operation data table, sending an operation prompt for prohibiting execution of the target operation.
In detail, if the target operation data does not exist in the matching operation data table, the fact that the user has no operation authority on the target operation data is indicated, an operation prompt for prohibiting execution of the target operation is sent, for example, a prompt message of 'no authority operation' is sent, and the prompt message is displayed on a man-machine interaction interface of user side equipment.
After receiving a data operation request of a user, the data operation request comprises a target operation data table and a target operation data table, at least two operation authority data tables which are determined in advance according to role information of the user are obtained, whether to perform target operation on target operation data in the target operation table is directly determined according to the at least two operation authority data tables, roles of the user are not required to be obtained each time, authorities are determined according to the roles of the user, and then data operation is performed according to the authorities, so that efficiency of data operation is improved; meanwhile, when determining whether to perform the target operation, the embodiment of the application selects the operation authority data table matched with the target operation from at least two operation authority data as the matched operation data table, and determines whether to perform the target operation according to whether the target operation data exists in the matched operation data table, rather than performing the target operation when the target operation exists in the target operation data table, thereby improving the safety of the operation data. The data operation method provided by the application can be applied to the fields of medical science and technology, financial business management and the like, and can achieve the purpose of high-efficiency and safe data operation.
As shown in fig. 2, a functional block diagram of the data manipulation device of the present application.
The data manipulation device 100 of the present application may be installed in an electronic apparatus. The data manipulation device may include a data manipulation request receiving module 101, a manipulation authority acquiring module 102, a matching manipulation data table determining module 103, a target manipulation data judging module 104, a data processing module 105, and a reminder module 106 according to the implemented functions. The module of the present application may also be referred to as a unit, meaning a series of computer program segments capable of being executed by the processor of the electronic device and of performing fixed functions, stored in the memory of the electronic device.
In the present embodiment, the functions concerning the respective modules/units are as follows:
the data operation request receiving module 101 is configured to receive a data operation request of a user, where the data operation request includes a target operation and a target operation data table.
In this embodiment, the data operation request of the user may be a data operation request triggered by the user based on the operation of the system client or the front-end page, for example, a data operation request for checking data of a certain subsystem, or deleting a certain piece of data, etc.
Wherein the data operation request includes a target operation and a target operation data table. The target operation is a specific operation performed on the data by a user, and comprises a query operation and a pruning operation (comprising a modification operation or a deletion operation); the target operation data table is a data table relating to an operation object corresponding to the target operation, that is, target operation data.
Preferably, the target operation data table is stored in a node of a blockchain.
By storing the target operation data table in the blockchain, the security of the target operation data table can be improved.
Specifically, the data operation request may include a plurality of parameters related to the data operation request, such as a module code, a user ID, a table name, a field name, a start time, an end time, a specified operation, and the like.
Optionally, in the embodiment of the present application, the target operation may further determine a target operation according to a designated role ID in the parameter set, including: judging whether the designated role ID is empty or not; if the designated role ID is empty, determining the target operation as a query operation; and if the designated role ID is not null, determining that the target operation is a pruning operation.
The operation right obtaining module 102 is configured to obtain at least two operation right data tables determined in advance according to the role information of the user.
Preferably, before receiving a data operation request of a user, determining at least two operation authority data tables corresponding to the user according to role information of the user. At least two operation authority data tables corresponding to the user can be directly obtained when the data operation request of the user is received each time.
For example, when a user is created, at least two operation right data tables corresponding to the user are determined according to roles assigned to the user.
Preferably, the apparatus further comprises an operation right data table determining module, the operation right data table determining module comprising:
before receiving a data operation request of a user, determining at least two operation authority data tables corresponding to the user according to role information of the user.
The operation authority data table determining module is specifically configured to:
before receiving a data operation request of a user, acquiring role information of the user;
determining the operation authority of the user according to the role information of the user, wherein the operation authority comprises a permission operation and a permission operation data table corresponding to the permission operation;
and if the number of the license operations is at least two and the number of the license operation data tables corresponding to each license operation is at least two, merging the license operation data tables corresponding to different types of license operations into different operation permission data tables respectively, and obtaining at least two operation permission data tables corresponding to the user.
Wherein the role information is a set of all roles owned by the user.
Preferably, the permission operation in the embodiment of the present application includes a query operation and a pruning operation. The operation authority data table correspondingly comprises an operation authority data table for inquiring operation and an operation authority data table for deleting operation.
Further, the determining the operation authority of the user according to the role information of the user includes:
acquiring a role identification field contained in the role information;
and determining the operation authority of the user according to the role identification field.
Preferably, the merging the license operation data tables corresponding to different types of license operations into different operation authority data tables respectively includes:
when the permission operation is a query operation, merging repeated data in a plurality of permission operation data tables corresponding to the query operation to obtain an operation authority data table for the query operation;
and when the permission operation is a pruning operation, collecting a plurality of permission operation data tables corresponding to the pruning operation as a pruning data table, and deleting repeated data in the pruning data table to obtain an operation authority data table for the pruning operation.
In the embodiment of the application, when the data operation is performed, the data operation can be directly limited according to the operation authority data without paying attention to the roles owned by the user, thereby improving the efficiency of the data operation.
The matching operation data table determining module 103 is configured to select, from the at least two operation permission data, an operation permission data table matching the target operation as a matching operation data table.
In detail, the matching operation data table determining module 103 is specifically configured to: if the target operation is a query operation, selecting an operation authority data table used for the query operation from the at least two operation authority data tables as the matching operation data table; or alternatively
And if the target operation is a pruning operation, selecting an operation authority data table for the pruning operation from the at least two operation authority data tables as the matching operation data table.
The target operation data determining module 104 is configured to query the target operation data table for the target operation data and determine whether the target operation data exists in the matching operation data table.
In the embodiment of the present application, the target operation data is specific data that needs to be operated in the data operation request, and is also an operation object corresponding to the target operation.
In detail, the target operation data determination module 104 is specifically configured to:
generating a target query statement according to the target operation data table and the target operation data;
generating sub-query sentences according to the target operation data and the matching operation data table;
combining the sub-query statement as constraint conditions of the target query statement with the target query statement to obtain a data query statement;
executing the data query statement to obtain a result data set;
if the result data set is not empty, determining that the target operation data exists in the matching operation data table;
and if the result data set is empty, determining that the target operation data does not exist in the matching operation data table.
And the data processing module 105 processes the target operation data according to the target operation if the target operation data exists in the matching operation data table.
In this embodiment, if the target operation data exists in the matching operation data table, it indicates that the user has a corresponding operation authority for the target operation data, and further data processing may be performed on the target operation data.
In detail, the data processing module 105 is specifically configured to:
if the target operation data exists in the matching operation data table and the target operation is a query operation, returning the target operation data to the user terminal equipment;
and if the target operation data exists in the matching operation data table and the target operation is a deletion operation, deleting or modifying the target operation data.
The reminding module 106 is configured to send an operation reminder for prohibiting execution of the target operation if the target operation data does not exist in the matching operation data table.
In detail, if the target operation data does not exist in the matching operation data table, the fact that the user has no operation authority on the target operation data is indicated, an operation prompt for prohibiting execution of the target operation is sent, for example, a prompt message of 'no authority operation' is sent, and the prompt message is displayed on a man-machine interaction interface of user side equipment.
After receiving a data operation request of a user, the data operation request comprises a target operation data table and a target operation data table, at least two operation authority data tables which are determined in advance according to role information of the user are obtained, whether to perform target operation on target operation data in the target operation table is directly determined according to the at least two operation authority data tables, roles of the user are not required to be obtained each time, authorities are determined according to the roles of the user, and then data operation is performed according to the authorities, so that efficiency of data operation is improved; meanwhile, when determining whether to perform the target operation, the embodiment of the application selects the operation authority data table matched with the target operation from at least two operation authority data as the matched operation data table, and determines whether to perform the target operation according to whether the target operation data exists in the matched operation data table, rather than performing the target operation when the target operation exists in the target operation data table, thereby improving the safety of the operation data. Therefore, the data operation device provided by the application can realize the purpose of efficient and safe data operation.
Fig. 3 is a schematic structural diagram of an electronic device implementing a data operation method according to the present application.
The electronic device 1 may comprise a processor 10, a memory 11 and a bus, and may further comprise a computer program, such as a data manipulation program 12, stored in the memory 11 and executable on the processor 10.
The memory 11 includes at least one type of readable storage medium, including flash memory, a mobile hard disk, a multimedia card, a card memory (e.g., SD or DX memory, etc.), a magnetic memory, a magnetic disk, an optical disk, etc. The memory 11 may in some embodiments be an internal storage unit of the electronic device 1, such as a removable hard disk of the electronic device 1. The memory 11 may in other embodiments also be an external storage device of the electronic device 1, such as a plug-in mobile hard disk, a Smart Media Card (SMC), a Secure Digital (SD) Card, a Flash memory Card (Flash Card) or the like, which are provided on the electronic device 1. Further, the memory 11 may also include both an internal storage unit and an external storage device of the electronic device 1. The memory 11 may be used not only for storing application software installed in the electronic device 1 and various types of data, such as codes of the data manipulation program 12, but also for temporarily storing data that has been output or is to be output.
The processor 10 may be comprised of integrated circuits in some embodiments, for example, a single packaged integrated circuit, or may be comprised of multiple integrated circuits packaged with the same or different functions, including one or more central processing units (Central Processing unit, CPU), microprocessors, digital processing chips, graphics processors, combinations of various control chips, and the like. The processor 10 is a Control Unit (Control Unit) of the electronic device, connects respective components of the entire electronic device using various interfaces and lines, and executes various functions of the electronic device 1 and processes data by running or executing programs or modules (for example, executing a data manipulation program or the like) stored in the memory 11, and calling data stored in the memory 11.
The bus may be a peripheral component interconnect standard (peripheral component interconnect, PCI) bus or an extended industry standard architecture (extended industry standard architecture, EISA) bus, among others. The bus may be classified as an address bus, a data bus, a control bus, etc. The bus is arranged to enable a connection communication between the memory 11 and at least one processor 10 etc.
Fig. 3 shows only an electronic device with components, it being understood by a person skilled in the art that the structure shown in fig. 3 does not constitute a limitation of the electronic device 1, and may comprise fewer or more components than shown, or may combine certain components, or may be arranged in different components.
For example, although not shown, the electronic device 1 may further include a power source (such as a battery) for supplying power to each component, and preferably, the power source may be logically connected to the at least one processor 10 through a power management device, so that functions of charge management, discharge management, power consumption management, and the like are implemented through the power management device. The power supply may also include one or more of any of a direct current or alternating current power supply, recharging device, power failure detection circuit, power converter or inverter, power status indicator, etc. The electronic device 1 may further include various sensors, bluetooth modules, wi-Fi modules, etc., which will not be described herein.
Further, the electronic device 1 may also comprise a network interface, optionally the network interface may comprise a wired interface and/or a wireless interface (e.g. WI-FI interface, bluetooth interface, etc.), typically used for establishing a communication connection between the electronic device 1 and other electronic devices.
The electronic device 1 may optionally further comprise a user interface, which may be a Display, an input unit, such as a Keyboard (Keyboard), or a standard wired interface, a wireless interface. Alternatively, in some embodiments, the display may be an LED display, a liquid crystal display, a touch-sensitive liquid crystal display, an OLED (Organic Light-Emitting Diode) touch, or the like. The display may also be referred to as a display screen or display unit, as appropriate, for displaying information processed in the electronic device 1 and for displaying a visual user interface.
It should be understood that the embodiments described are for illustrative purposes only and are not limited to this configuration in the scope of the patent application.
The data manipulation program 12 stored in the memory 11 in the electronic device 1 is a combination of a plurality of instructions, which when run in the processor 10, can realize:
receiving a data operation request of a user, wherein the data operation request comprises a target operation and a target operation data table;
acquiring at least two operation authority data tables which are determined in advance according to the role information of the user;
selecting an operation authority data table matched with the target operation from the at least two operation authority data as a matched operation data table;
inquiring target operation data in the target operation data table and judging whether the target operation data exists in the matching operation data table or not;
if the target operation data exists in the matching operation data table, carrying out data processing on the target operation data according to the target operation;
and if the target operation data does not exist in the matching operation data table, sending an operation prompt for prohibiting the execution of the target operation.
Further, the modules/units integrated in the electronic device 1 may be stored in a computer readable storage medium if implemented in the form of software functional units and sold or used as separate products. The computer readable medium may include: any entity or device capable of carrying the computer program code, a recording medium, a U disk, a removable hard disk, a magnetic disk, an optical disk, a computer Memory, a Read-Only Memory (ROM).
In the several embodiments provided in the present application, it should be understood that the disclosed apparatus, device and method may be implemented in other manners. For example, the above-described apparatus embodiments are merely illustrative, and for example, the division of the modules is merely a logical function division, and there may be other manners of division when actually implemented.
The modules described as separate components may or may not be physically separate, and components shown as modules may or may not be physical units, may be located in one place, or may be distributed over multiple network units. Some or all of the modules may be selected according to actual needs to achieve the purpose of the solution of this embodiment.
In addition, each functional module in the embodiments of the present application may be integrated in one processing unit, or each unit may exist alone physically, or two or more units may be integrated in one unit. The integrated units can be realized in a form of hardware or a form of hardware and a form of software functional modules.
It will be evident to those skilled in the art that the application is not limited to the details of the foregoing illustrative embodiments, and that the present application may be embodied in other specific forms without departing from the spirit or essential characteristics thereof.
The present embodiments are, therefore, to be considered in all respects as illustrative and not restrictive, the scope of the application being indicated by the appended claims rather than by the foregoing description, and all changes which come within the meaning and range of equivalency of the claims are therefore intended to be embraced therein. Any accompanying diagram representation in the claims should not be considered as limiting the claim concerned.
Furthermore, it is evident that the word "comprising" does not exclude other elements or steps, and that the singular does not exclude a plurality. A plurality of units or means recited in the system claims can also be implemented by means of software or hardware by means of one unit or means. The terms second, etc. are used to denote a name, but not any particular order.
Finally, it should be noted that the above-mentioned embodiments are merely for illustrating the technical solution of the present application and not for limiting the same, and although the present application has been described in detail with reference to the preferred embodiments, it should be understood by those skilled in the art that modifications and equivalents may be made to the technical solution of the present application without departing from the spirit and scope of the technical solution of the present application.
Claims (8)
1. A method of data manipulation, the method comprising:
receiving a data operation request of a user, wherein the data operation request comprises a target operation and a target operation data table;
acquiring at least two operation authority data tables which are determined in advance according to the role information of the user;
selecting an operation authority data table matched with the target operation from the at least two operation authority data as a matched operation data table;
inquiring target operation data in the target operation data table and judging whether the target operation data exists in the matching operation data table or not;
if the target operation data exists in the matching operation data table, carrying out data processing on the target operation data according to the target operation;
if the target operation data does not exist in the matching operation data table, sending an operation prompt for prohibiting execution of the target operation;
wherein, before receiving the data operation request of the user, the method further comprises: acquiring role information of the user; determining the operation authority of the user according to the role information of the user, wherein the operation authority comprises a permission operation and a permission operation data table corresponding to the permission operation; if the number of the license operations is at least two and the number of the license operation data tables corresponding to each license operation is at least two, respectively merging the license operation data tables corresponding to different types of license operations into different operation authority data tables to obtain at least two operation authority data tables corresponding to the user;
the querying the target operation data table for target operation data and judging whether the target operation data exists in the matching operation data table includes: generating a target query statement according to the target operation data table and the target operation data; generating sub-query sentences according to the target operation data and the matching operation data table; combining the sub-query statement as constraint conditions of the target query statement with the target query statement to obtain a data query statement; executing the data query statement to obtain a result data set; if the result data set is not empty, determining that the target operation data exists in the matching operation data table; and if the result data set is empty, determining that the target operation data does not exist in the matching operation data table.
2. The data manipulation method as claimed in claim 1, wherein the merging of the license operation data tables corresponding to different types of license operations into different operation authority data tables, respectively, comprises:
when the permission operation is a query operation, merging repeated data in a plurality of permission operation data tables corresponding to the query operation to obtain an operation authority data table for the query operation; or alternatively
And when the permission operation is a pruning operation, collecting a plurality of permission operation data tables corresponding to the pruning operation as a pruning data table, and deleting repeated data in the pruning data table to obtain an operation authority data table for the pruning operation.
3. The data manipulation method of claim 1, wherein said determining the user's operation authority according to the user's role information comprises:
acquiring a role identification field contained in the role information;
and determining the operation authority of the user according to the role identification field.
4. A data manipulation method according to any one of claims 1 to 3, wherein said selecting, from said at least two manipulation authority data, a manipulation authority data table that matches said target manipulation as a matching manipulation data table comprises:
if the target operation is a query operation, selecting an operation authority data table used for the query operation from the at least two operation authority data tables as the matching operation data table; or alternatively
And if the target operation is a pruning operation, selecting an operation authority data table for the pruning operation from the at least two operation authority data tables as the matching operation data table.
5. A data manipulation method according to any one of claims 1 to 3, wherein said data processing of said target manipulation data according to said target manipulation comprises:
if the target operation is a query operation, returning the target operation data to the user terminal equipment;
and if the target operation is a deletion operation, deleting or modifying the target operation data.
6. A data manipulation device for implementing the data manipulation method according to any one of claims 1 to 5, characterized in that the device comprises:
the data operation request receiving module is used for receiving a data operation request of a user, wherein the data operation request comprises a target operation and a target operation data table;
the operation authority acquisition module is used for acquiring at least two operation authority data tables which are determined in advance according to the role information of the user;
the matching operation data table determining module is used for selecting an operation authority data table matched with the target operation from the at least two operation authority data as a matching operation data table;
the target operation data judging module is used for inquiring target operation data in the target operation data table and judging whether the target operation data exists in the matching operation data table or not;
the data processing module is used for carrying out data processing on the target operation data according to the target operation if the target operation data exist in the matching operation data table;
and the reminding module is used for sending an operation reminding for prohibiting the execution of the target operation if the target operation data does not exist in the matching operation data table.
7. An electronic device, the electronic device comprising:
a memory storing at least one computer program instruction; a kind of electronic device with high-pressure air-conditioning system
A processor executing computer program instructions stored in the memory to perform the data manipulation method of any one of claims 1 to 5.
8. A computer-readable storage medium storing a computer program, wherein the computer program, when executed by a processor, implements the data manipulation method according to any one of claims 1 to 5.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011037816.3A CN112182011B (en) | 2020-09-28 | 2020-09-28 | Data operation method, device, electronic equipment and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202011037816.3A CN112182011B (en) | 2020-09-28 | 2020-09-28 | Data operation method, device, electronic equipment and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN112182011A CN112182011A (en) | 2021-01-05 |
| CN112182011B true CN112182011B (en) | 2023-08-15 |
Family
ID=73945289
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202011037816.3A Active CN112182011B (en) | 2020-09-28 | 2020-09-28 | Data operation method, device, electronic equipment and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN112182011B (en) |
Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106484892A (en) * | 2016-10-19 | 2017-03-08 | 凌云天博光电科技股份有限公司 | Data manipulation method and device |
| CN107545047A (en) * | 2017-08-17 | 2018-01-05 | 平安科技(深圳)有限公司 | The querying method and terminal device of user right data |
| CN109409119A (en) * | 2017-08-17 | 2019-03-01 | 北京京东尚科信息技术有限公司 | Data manipulation method and device |
-
2020
- 2020-09-28 CN CN202011037816.3A patent/CN112182011B/en active Active
Patent Citations (3)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN106484892A (en) * | 2016-10-19 | 2017-03-08 | 凌云天博光电科技股份有限公司 | Data manipulation method and device |
| CN107545047A (en) * | 2017-08-17 | 2018-01-05 | 平安科技(深圳)有限公司 | The querying method and terminal device of user right data |
| CN109409119A (en) * | 2017-08-17 | 2019-03-01 | 北京京东尚科信息技术有限公司 | Data manipulation method and device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN112182011A (en) | 2021-01-05 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| WO2023056943A1 (en) | Internet of things rule engine-based terminal control method and apparatus, and device and medium | |
| CN110851298B (en) | Abnormality analysis and processing method, electronic device and storage medium | |
| CN113434901A (en) | Intelligent data query method and device, electronic equipment and storage medium | |
| CN111932562A (en) | Image identification method and device based on CT sequence, electronic equipment and medium | |
| CN114979120B (en) | Data uploading method, device, equipment and storage medium | |
| CN111400363A (en) | Index data processing method and device, electronic equipment and storage medium | |
| CN111429121B (en) | Block chain-based electronic ticket processing method, device, equipment and storage medium | |
| CN111401691B (en) | Business progress monitoring method and device and computer readable storage medium | |
| CN112446022A (en) | Data authority control method and device, electronic equipment and storage medium | |
| CN112256783A (en) | Data export method and device, electronic equipment and storage medium | |
| CN111694843A (en) | Missing number detection method and device, electronic equipment and storage medium | |
| CN113590632B (en) | Database index creation method, device, equipment and medium | |
| CN114491646A (en) | Data desensitization method and device, electronic equipment and storage medium | |
| CN112182011B (en) | Data operation method, device, electronic equipment and storage medium | |
| CN111985194A (en) | Data storage method and device, electronic equipment and storage medium | |
| CN111538768A (en) | Data query method and device based on N-element model, electronic equipment and medium | |
| CN111858604A (en) | Data storage method and device, electronic equipment and storage medium | |
| CN113515265B (en) | Site configuration method, device, equipment and computer readable storage medium | |
| CN115408672A (en) | Deep early warning method, device, equipment and storage medium for blacklist | |
| CN114547011A (en) | Data extraction method and device, electronic equipment and storage medium | |
| CN114491196A (en) | Information granularity-based information export method, device, equipment and medium | |
| CN113342867A (en) | Data distribution and management method and device, electronic equipment and readable storage medium | |
| CN112667244A (en) | Data verification method and device, electronic equipment and computer readable storage medium | |
| CN114723400B (en) | Service authorization management method, device, equipment and storage medium | |
| CN112612451B (en) | Interface generation method, device, equipment and computer readable storage medium |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |