CN113158225A - Authority management method and device and electronic equipment - Google Patents
Authority management method and device and electronic equipment Download PDFInfo
- Publication number
- CN113158225A CN113158225A CN202110241003.4A CN202110241003A CN113158225A CN 113158225 A CN113158225 A CN 113158225A CN 202110241003 A CN202110241003 A CN 202110241003A CN 113158225 A CN113158225 A CN 113158225A
- Authority
- CN
- China
- Prior art keywords
- organization
- information
- architecture
- target
- substructure
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Classifications
-
- G—PHYSICS
- G06—COMPUTING; CALCULATING OR COUNTING
- G06F—ELECTRIC DIGITAL DATA PROCESSING
- G06F21/00—Security arrangements for protecting computers, components thereof, programs or data against unauthorised activity
- G06F21/60—Protecting data
- G06F21/62—Protecting access to data via a platform, e.g. using keys or access control rules
- G06F21/6218—Protecting access to data via a platform, e.g. using keys or access control rules to a system of files or objects, e.g. local or distributed file system or database
Landscapes
- Engineering & Computer Science (AREA)
- Theoretical Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Bioethics (AREA)
- General Health & Medical Sciences (AREA)
- Computer Hardware Design (AREA)
- Health & Medical Sciences (AREA)
- Software Systems (AREA)
- Physics & Mathematics (AREA)
- General Engineering & Computer Science (AREA)
- General Physics & Mathematics (AREA)
- Databases & Information Systems (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a permission management method and device and electronic equipment. The authority management method comprises the following steps: receiving an organization architecture instruction of a target account, wherein the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure; configuring a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each organization substructure in response to the organization architecture instruction; and allocating operation authority to each organization substructure in the target organization architecture. The invention solves the technical problems that the organization authority management mode used in the related technology has lower flexibility and can not adapt to company organization.
Description
Technical Field
The invention relates to the technical field of internet data processing, in particular to a permission management method and device and electronic equipment.
Background
In the related art, a product manager needs to participate in a service flow in the process of thinking a product architecture, often abstracts a plurality of roles having appeal to the product through the service flow, and combs a use scene according to the characteristics of the roles and designs requirements. In the toB product, based on multidirectional factors such as product flow and information security, usage scenarios of each role are partially general and partially isolated, and at this time, usage rights of each role in a company architecture need to be determined.
Currently, when the role authority of each department of a company is designed, due to the size difference and the type difference of each company, the organization architecture changes with the time. For example, a company just creating a business has development and products when the scale is small, and basically has no clear organization division; when the company reaches the scale of dozens of people, different departments can be divided, and the organization framework is correspondingly adjusted by a department responsible person and a department staff. The company is further developed, many branch companies may exist, or other companies are purchased, the organization architecture is adjusted, and the branch company leader is needed. The existing rights management technology only can be used for a company with a small scale, has some limitations and insufficient flexibility, and may need to redesign an organization architecture along with the increase of the scale of the company.
Meanwhile, as the demand of customers on the cloud architecture is gradually increased, the cloud architecture in the prior art is mostly architecture content designed for a small number of people, and there is no scheme on how to realize expansion of the cloud architecture when the number of people is greatly increased.
In view of the above problems, no effective solution has been proposed.
Disclosure of Invention
The embodiment of the invention provides a permission management method, a permission management device and electronic equipment, which are used for at least solving the technical problems that an organization permission management mode used in the related technology is low in flexibility and cannot adaptively adjust company organization.
According to an aspect of an embodiment of the present invention, there is provided an authority management method applied to an application platform as a service (APaaS) platform, the authority management method including: receiving an organization architecture instruction of a target account, wherein the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure; configuring, in response to the organizational structure instruction, a target organizational structure of the target account based on the plurality of organizational substructure information and permission information for each of the organizational substructures; and allocating operation authority to each organization substructure in the target organization architecture.
Optionally, the step of configuring a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each of the organization substructures includes: determining architecture level information, department information of each level of architecture and position information contained in a department based on the plurality of organization substructure information and authority information of each organization substructure; determining a basic organization architecture based on the number of levels in the architecture level information and the incidence relation between each layer of organization architecture; determining a plurality of departments of each level of organization in the basic organization architecture based on the department information of each level of architecture; determining configuration personnel information of each department in the basic organization framework based on the post information; and outputting the target organization architecture based on the plurality of departments of each level of organization in the basic organization architecture and the configuration personnel information of each department.
Optionally, after configuring the target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each of the organization substructures, the authority management method further includes: when the organization architecture instruction is an architecture adjustment instruction, determining organization adjustment information, department adjustment information and personnel adjustment information; adding or deleting the organization of the target organization architecture according to the organization adjustment information; adding or deleting departments under the target organization according to the department adjustment information; and adding or deleting the personnel posts under the target department according to the personnel adjustment information.
Optionally, the step of assigning an operation authority to each organization substructure in the target organization architecture includes: determining organization function information of each level of organization; and distributing the function authority for each level of organization in the target organization architecture based on the organization function information of each level of organization.
Optionally, the step of assigning an operation authority to each organization substructure in the target organization architecture includes: determining the post function information of each post under each department; and performing position authority authorization for each position in the target organization framework based on the position function information of each position under each department.
Optionally, the step of assigning an operation authority to each organization substructure in the target organization architecture includes: assigning all permissions to administrators in the target organizational structure; and allocating the position authority to the department personnel in the target organization structure.
Optionally, after allocating the operation authority to each organization substructure in the target organization architecture, the authority management method further includes: and updating data information in an organization database corresponding to the target organization architecture in a cloud database.
According to another aspect of the embodiments of the present invention, there is also provided an authority management apparatus, which is applied to an application platform as a service (APaaS) platform, the authority management apparatus including: the system comprises a receiving unit, a processing unit and a processing unit, wherein the receiving unit is used for receiving an organization architecture instruction of a target account, and the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure; a response unit, configured to configure a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each of the organization substructures in response to the organization architecture instruction; and the distribution unit is used for distributing operation authority to each organization substructure in the target organization architecture.
Optionally, the response unit includes: a first determining module, configured to determine architecture level information, department information of each level of architecture, and position information included in a department based on the plurality of organization substructure information and authority information of each of the organization substructures; a second determining module, configured to determine a basic organization architecture based on the number of hierarchies in the architecture hierarchy information and an association relationship between each layer of organization architecture; a third determining module, configured to determine, based on the department information of each level of the infrastructure, a plurality of departments of each level of the infrastructure; a fourth determining module, configured to determine, based on the post information, configuration staff information for each department in the infrastructure; and the output module is used for outputting the target organization architecture based on the plurality of departments of each level of organization in the basic organization architecture and the configuration personnel information of each department.
Optionally, the rights management apparatus further includes: a fifth determining module, configured to determine organization adjustment information, department adjustment information, and staff adjustment information when the organization architecture instruction is an architecture adjustment instruction after configuring a target organization architecture of the target account based on the plurality of organization substructure information and authority information of each of the organization substructures; the first adjusting module is used for adding or deleting the organization of the target organization architecture according to the organization adjusting information; the second adjusting module is used for increasing or deleting departments under the target organization according to the department adjusting information; and the third adjusting module is used for increasing or deleting the personnel posts under the target department according to the personnel adjusting information.
Optionally, the allocation unit comprises: the sixth determining module is used for determining organization function information of each level of organization; and the first distribution module is used for distributing the function authority for each level of organization in the target organization architecture based on the organization function information of each level of organization.
Optionally, the allocation unit comprises: a seventh determining module, configured to determine post function information of each post in each department; and the second distribution module is used for authorizing the post authority for each post in the target organization framework based on the post function information of each post under each department.
Optionally, the allocation unit comprises: a third allocation module, configured to allocate all permissions to an administrator in the target organization architecture; and the fourth distribution module is used for distributing the position authority to the department personnel in the target organization framework.
Optionally, the rights management apparatus further includes: and the updating unit is used for updating the data information in the organization database corresponding to the target organization architecture in the cloud database after the operation authority is distributed to each organization substructure in the target organization architecture.
According to another aspect of the embodiments of the present invention, there is also provided an electronic device, including: a processor; and a memory for storing executable instructions of the processor; wherein the processor is configured to perform any of the above-described rights management methods via execution of the executable instructions.
According to another aspect of the embodiments of the present invention, there is also provided a computer-readable storage medium, where the computer-readable storage medium includes a stored computer program, and when the computer program runs, the apparatus where the computer-readable storage medium is located is controlled to execute any one of the above rights management methods.
In the embodiment of the invention, an organization architecture instruction of a target account is received, wherein the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure, the organization architecture instruction is responded, the target organization architecture of the target account is configured based on the plurality of organization substructure information and the authority information of each organization substructure, and operation authority is allocated to each organization substructure in the target organization architecture. In this embodiment, the demander does not need to perform code development, and can automatically complete the organization of the organization architecture and the authority allocation of each department and personnel in the organization structure, and considering that the organization architecture can be frequently adjusted, the organization architecture becomes an elastic architecture (i.e., the interface at the front end of the organization architecture is designed to be configured at will, and the design of the database can be dynamically adjusted), so as to solve the technical problems that the organization authority management mode used in the related art is low in flexibility and cannot adaptively adjust company organizations.
Drawings
The accompanying drawings, which are included to provide a further understanding of the invention and are incorporated in and constitute a part of this application, illustrate embodiment(s) of the invention and together with the description serve to explain the invention without limiting the invention. In the drawings:
FIG. 1 is a flow diagram of an alternative rights management method according to an embodiment of the invention;
fig. 2 is a schematic diagram of an alternative rights management device according to an embodiment of the invention.
Detailed Description
In order to make the technical solutions of the present invention better understood, the technical solutions in the embodiments of the present invention will be clearly and completely described below with reference to the drawings in the embodiments of the present invention, and it is obvious that the described embodiments are only a part of the embodiments of the present invention, and not all of the embodiments. All other embodiments, which can be derived by a person skilled in the art from the embodiments given herein without making any creative effort, shall fall within the protection scope of the present invention.
It should be noted that the terms "first," "second," and the like in the description and claims of the present invention and in the drawings described above are used for distinguishing between similar elements and not necessarily for describing a particular sequential or chronological order. It is to be understood that the data so used is interchangeable under appropriate circumstances such that the embodiments of the invention described herein are capable of operation in sequences other than those illustrated or described herein. Furthermore, the terms "comprises," "comprising," and "having," and any variations thereof, are intended to cover a non-exclusive inclusion, such that a process, method, system, article, or apparatus that comprises a list of steps or elements is not necessarily limited to those steps or elements expressly listed, but may include other steps or elements not expressly listed or inherent to such process, method, article, or apparatus.
In the invention, zero code development for organization architecture and authority management is realized for a demand side, all layout structures (organization, department, personnel and post) are adapted in the aspect of organization architecture, the configuration can be carried out at will, and the organization architecture is an elastic architecture and can be adjusted at any time; in the aspect of authority management, the minimum authority can reach the field level, automatic configuration can be realized, code design is omitted, and people configuring various organizations, departments and posts can check the data of the particle level; meanwhile, the permission level is not limited, and the permission level can be extended all the time. The following is a detailed description of the embodiments.
Example one
The embodiment of the invention can realize zero code development, flexible configuration of organizational structure and flexible configuration of authority management; the zero code means that the existing function can be completed through configuration without developing additional code, and the zero code is a relatively flexible embodiment in code design. The embodiment of the invention has flexible design on the authority management, can be used as a platform side to create a plurality of organizations, create different departments for different organizations, place personnel under different departments and configure posts. Considering that the organization structure can be frequently adjusted, the interface design at the front end is changed into random configuration, the design of the database can be dynamically adjusted, and the organization structure becomes a flexible structure.
Meanwhile, the design of the authority can authorize functions for different organizations, all functions developed by the platform can authorize functions for different organizations, and along with the more functions developed by the platform, the more and more capacities can be acquired by other organizations.
In accordance with an embodiment of the present invention, there is provided a rights management method embodiment, it should be noted that the steps illustrated in the flowchart of the accompanying drawings may be performed in a computer system such as a set of computer-executable instructions, and that while a logical order is illustrated in the flowchart, in some cases the steps illustrated or described may be performed in an order different than here.
The embodiment of the invention provides an authority management method which is applied to an application platform, namely, an APaaS platform. The APaaS platform of the embodiment of the invention provides a platform architecture design interface for a target account, a demand party or a customer, and the target account, the demand party or the customer can flexibly design and flexibly adjust an organization architecture adaptive to self organization through the platform architecture design interface, which comprises the following steps: designing and organizing companies (aiming at the cloud architecture requirements, also designing and organizing cloud architectures (public clouds, private clouds and mixed clouds)), designing and organizing departments, all posts in the designing departments (such as product manager posts, development posts, testing posts, operation and maintenance posts, service posts, department manager posts, butt-joint persons and the like), and personnel, wherein each person in the organizing departments can be correspondingly provided with an identification ID (identity), a person name, a person position and a person contact mode; and distributing corresponding authority to each person or post, after the design is completed, sending an organization architecture instruction to the background of the APaaS platform through the platform architecture design interface, and after the background of the APaaS platform receives the organization architecture instruction, completing the construction and authority management of the target organization architecture.
Fig. 1 is a flowchart of an alternative rights management method according to an embodiment of the invention, as shown in fig. 1, the method includes the following steps:
step S102, receiving an organization architecture instruction of a target account, wherein the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure;
step S104, responding to the organization architecture instruction, and configuring a target organization architecture of the target account based on the information of the plurality of organization substructures and the authority information of each organization substructure;
and step S106, distributing operation authority to each organization substructure in the target organization architecture.
Through the steps, an organization architecture instruction of the target account can be received, wherein the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure; configuring a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each organization substructure in response to the organization architecture instruction; and allocating operation authority to each organization substructure in the target organization architecture. In this embodiment, the demander does not need to perform code development, and can automatically complete the organization of the organization architecture and the authority allocation of each department and personnel in the organization structure, and considering that the organization architecture can be frequently adjusted, the organization architecture becomes an elastic architecture (i.e., the interface at the front end of the organization architecture is designed to be configured at will, and the design of the database can be dynamically adjusted), so as to solve the technical problems that the organization authority management mode used in the related art is low in flexibility and cannot adaptively adjust company organizations.
The following describes the embodiments of the present invention in detail with reference to the above steps.
Step S102, receiving an organization architecture instruction of the target account, wherein the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure.
The organization sub-structure may be adapted to an organization structure of each company, for example, a research and development department, a legal department, a business department, a human department, a management department, etc., and each organization sub-structure may correspond to a plurality of sub-posts, for example, the research and development department includes: a product manager station, a development station, a test station, an operation and maintenance station, and the like. Each department can be correspondingly provided with a corresponding authority, and each post and each person can be provided with a corresponding authority.
The organization architecture instruction may be sent by a platform architecture design interface, and after logging in, a demander or a target account may determine a plurality of organization substructures to be architected and an association relationship between the organization substructures, and then select a function corresponding to each organization substructure through the design interface, for example, a consultation and diagnosis work structure, which may be selected as follows: data management, project docking, system management, consultation diagnosis.
Optionally, for the case that the demand of the cloud architecture increases, the organization architecture instruction may also carry multiple organization substructure information based on multiple cloud architectures and authority information of each organization substructure.
And step S104, responding to the organization architecture instruction, and configuring the target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each organization substructure.
Optionally, the step of configuring a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each organization substructure includes: determining architecture level information, department information of each level of architecture and position information contained in a department based on the information of the plurality of organization substructures and the authority information of each organization substructure; determining a basic organization architecture based on the number of levels in the architecture level information and the incidence relation between each layer of organization architecture; determining a plurality of departments of each level of organization in the basic organization architecture based on the department information of each level of architecture; determining the configuration personnel information of each department in the basic organization framework based on the post information; and outputting the target organization architecture based on the plurality of departments of each level of organization in the basic organization architecture and the configuration personnel information of each department.
In the embodiment of the invention, corresponding design can be carried out according to the interior of a company (or the interior of a department, the interior of a work office, the interior of a factory and the like) of a demand party, along with the development of the company, if the sub-company and the organization framework are adjusted, extension development can be flexibly carried out to adapt to the organization change of the development, the authority management design of the APaaS platform considers the change of the organization, the department, the post and the personnel, the design is more flexible, the organization framework of the company is adjusted, the service aspect can not be changed greatly, and the free authority distribution brings great convenience.
Aiming at the condition that the demand of the cloud architecture is increased, a hybrid cloud architecture can be designed, and the information of a plurality of organization substructures and the authority information of each organization substructure are compatible with a private cloud and a public cloud.
Optionally, after configuring the target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each organization substructure, the authority management method further includes: when the organization architecture instruction is an architecture adjustment instruction, determining organization adjustment information, department adjustment information and personnel adjustment information; adding or deleting the organization of the target organization architecture according to the organization adjustment information; adding or deleting departments under the target organization according to the department adjustment information; and adding or deleting the personnel posts under the target department according to the personnel adjustment information.
And step S106, distributing operation authority to each organization substructure in the target organization architecture.
The distribution of the authority is completed in the interface configuration, the code is not required to be rewritten, and different authorities of different people can be easily seen.
In the embodiment of the present invention, the step of assigning operation permissions to each organization substructure in a target organization architecture includes: determining organization function information of each level of organization; and performing function authority distribution for each level of organization in the target organization architecture based on the organization function information of each level of organization.
Optionally, the step of assigning an operation authority to each organization substructure in the target organization architecture includes: determining the post function information of each post under each department; and based on the post function information of each post under each department, performing post authority authorization on each post in the target organization structure.
The functions acquired by different organizations can authorize the posts in the organizations, and the posts can be authorized after different organizations log in. For example, post authorization includes: cloud usage, submission, system configuration, configuration and support, content management, process management, user management, functional rights, attachment management, business modeling, page management, consultation diagnostics, project docking, data management, data statistics, and the like.
Optionally, the step of assigning an operation authority to each organization substructure in the target organization architecture includes: assigning all permissions to administrators in the target organizational structure; and allocating the position authority to department personnel in the target organization structure.
Personnel authorization can transversely allocate a plurality of posts to a person, corresponding permissions can also be more, no limitation is carried out, all permissions can be allocated to a certain administrator or non-administrator, other persons (for example, department personnel in an organization framework) can be allocated with less permissions (for example, only post permissions are allocated), and the permission allocation is very flexible.
Optionally, after allocating the operation right to each organization substructure in the target organization architecture, the right management method further includes: and updating data information in an organization database corresponding to the target organization architecture in the cloud database.
Optionally, in the embodiment of the present invention, a plurality of organization substructures may be designed to face public cloud products in response to a situation that the demand of the cloud architecture increases, and in the embodiment of the present invention, products supporting a hybrid cloud architecture, for example: an online cloud architecture supporting a large organization needs a hybrid cloud mode on the overall architecture, so that the organization information is compatible with a private cloud and a public cloud based on the hybrid cloud architecture and the authority management service is supported.
By the embodiment, the flexibly adjustable organization framework can be designed in the APaaS environment, company organizations, departments, personnel and posts which are continuously developed and changed are adapted through flexible configuration, and the authority distribution of each substructure and personnel is flexible, so that even if the company organization framework is adjusted, the business aspect cannot be changed greatly, and the authority is freely distributed to bring convenience.
Example two
The embodiment of the invention provides an authority management device, which is applied to an application platform, namely an APaaS platform.
Fig. 2 is a schematic diagram of an optional rights management apparatus according to an embodiment of the present invention, which is applied to an application platform as a service (APaaS) platform, as shown in fig. 2, the rights management apparatus includes: a receiving unit 21, a response unit 23, an assigning unit 25, wherein,
a receiving unit 21, configured to receive an organization structure instruction of a target account, where the organization structure instruction at least carries multiple organization substructure information and authority information of each organization substructure;
a response unit 23, configured to configure, in response to the organization architecture instruction, a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each organization substructure;
an assigning unit 25, configured to assign operation permissions to the respective organization substructures in the target organization architecture.
The authority management device may receive an organization architecture instruction of a target account through the receiving unit 21, where the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure, respond to the organization architecture instruction through the responding unit 23, configure a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each organization substructure, and allocate an operation authority to each organization substructure in the target organization architecture through the allocating unit 25. In this embodiment, the demander does not need to perform code development, and can automatically complete the organization of the organization architecture and the authority allocation of each department and personnel in the organization structure, and considering that the organization architecture can be frequently adjusted, the organization architecture becomes an elastic architecture (i.e., the interface at the front end of the organization architecture is designed to be configured at will, and the design of the database can be dynamically adjusted), so as to solve the technical problems that the organization authority management mode used in the related art is low in flexibility and cannot adaptively adjust company organizations.
Optionally, the response unit includes: the first determining module is used for determining architecture level information, department information of each level of architecture and position information contained in a department based on a plurality of organization substructure information and authority information of each organization substructure; the second determination module is used for determining a basic organization framework based on the level number in the framework level information and the incidence relation between each layer of organization framework; a third determining module, configured to determine, based on the department information of each level of the infrastructure, a plurality of departments of each level of the infrastructure; the fourth determining module is used for determining the configuration personnel information of each department in the basic organization framework based on the post information; and the output module is used for outputting the target organization architecture based on the plurality of departments of each level of organization in the basic organization architecture and the configuration personnel information of each department.
The first determining module is defined as a public cloud, a private cloud or a mixed cloud, determines cloud information and the like.
Alternatively, the rights management apparatus further includes: the fifth determining module is used for determining organization adjusting information, department adjusting information and personnel adjusting information when the organization architecture instruction is an architecture adjusting instruction after the target organization architecture of the target account is configured based on the plurality of organization substructure information and the authority information of each organization substructure; the first adjusting module is used for adding or deleting the organization of the target organization architecture according to the organization adjusting information; the second adjusting module is used for increasing or deleting departments under the target organization according to the department adjusting information; and the third adjusting module is used for increasing or deleting the personnel posts under the target department according to the personnel adjusting information.
Optionally, the distribution unit includes: the sixth determining module is used for determining organization function information of each level of organization; and the first distribution module is used for distributing the function authority for each level of organization in the target organization architecture based on the organization function information of each level of organization.
In an embodiment of the present invention, the allocation unit further includes: a seventh determining module, configured to determine post function information of each post in each department; and the second distribution module is used for authorizing the post authority for each post in the target organization framework based on the post function information of each post under each department.
Optionally, the distribution unit includes: the third distribution module is used for distributing all the authorities to the administrator in the target organization architecture; and the fourth distribution module is used for distributing the position authority to the department personnel in the target organization framework.
Optionally, the rights management device further includes: and the updating unit is used for updating the data information in the organization database corresponding to the target organization architecture in the cloud database after the operation authority is distributed to each organization substructure in the target organization architecture.
The above-mentioned right management device may further comprise a processor and a memory, wherein the above-mentioned receiving unit 21, the responding unit 23, the allocating unit 25, etc. are stored in the memory as program units, and the processor executes the above-mentioned program units stored in the memory to implement the corresponding functions.
The processor comprises a kernel, and the kernel calls a corresponding program unit from the memory. The kernel can set one or more than one, and the operation authority is distributed to each organization substructure in the target organization architecture by adjusting the kernel parameters.
The memory may include volatile memory in a computer readable medium, Random Access Memory (RAM) and/or nonvolatile memory such as Read Only Memory (ROM) or flash memory (flash RAM), and the memory includes at least one memory chip.
According to another aspect of the embodiments of the present invention, there is also provided an electronic device, including: a processor; and a memory for storing executable instructions for the processor; wherein the processor is configured to perform any of the above-described rights management methods via execution of executable instructions.
According to another aspect of the embodiments of the present invention, there is also provided a computer-readable storage medium, where the computer-readable storage medium includes a stored computer program, and when the computer program runs, the apparatus where the computer-readable storage medium is located is controlled to execute any one of the above-mentioned rights management methods.
The present application further provides a computer program product adapted to perform a program for initializing the following method steps when executed on a data processing device: receiving an organization architecture instruction of a target account, wherein the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure; configuring a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each organization substructure in response to the organization architecture instruction; and allocating operation authority to each organization substructure in the target organization architecture.
The above-mentioned serial numbers of the embodiments of the present invention are merely for description and do not represent the merits of the embodiments.
In the above embodiments of the present invention, the descriptions of the respective embodiments have respective emphasis, and for parts that are not described in detail in a certain embodiment, reference may be made to related descriptions of other embodiments.
In the embodiments provided in the present application, it should be understood that the disclosed technology can be implemented in other ways. The above-described embodiments of the apparatus are merely illustrative, and for example, the division of the units may be a logical division, and in actual implementation, there may be another division, for example, multiple units or components may be combined or integrated into another system, or some features may be omitted, or not executed. In addition, the shown or discussed mutual coupling or direct coupling or communication connection may be an indirect coupling or communication connection through some interfaces, units or modules, and may be in an electrical or other form.
The units described as separate parts may or may not be physically separate, and parts displayed as units may or may not be physical units, may be located in one place, or may be distributed on a plurality of units. Some or all of the units can be selected according to actual needs to achieve the purpose of the solution of the embodiment.
In addition, functional units in the embodiments of the present invention may be integrated into one processing unit, or each unit may exist alone physically, or two or more units are integrated into one unit. The integrated unit can be realized in a form of hardware, and can also be realized in a form of a software functional unit.
The integrated unit, if implemented in the form of a software functional unit and sold or used as a stand-alone product, may be stored in a computer readable storage medium. Based on such understanding, the technical solution of the present invention may be embodied in the form of a software product, which is stored in a storage medium and includes instructions for causing a computer device (which may be a personal computer, a server, or a network device) to execute all or part of the steps of the method according to the embodiments of the present invention. And the aforementioned storage medium includes: a U-disk, a Read-Only Memory (ROM), a Random Access Memory (RAM), a removable hard disk, a magnetic or optical disk, and other various media capable of storing program codes.
The foregoing is only a preferred embodiment of the present invention, and it should be noted that, for those skilled in the art, various modifications and decorations can be made without departing from the principle of the present invention, and these modifications and decorations should also be regarded as the protection scope of the present invention.
Claims (10)
1. A method for managing authority is applied to an application platform as a service (APaaS) platform, and comprises the following steps:
receiving an organization architecture instruction of a target account, wherein the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure;
configuring, in response to the organizational structure instruction, a target organizational structure of the target account based on the plurality of organizational substructure information and permission information for each of the organizational substructures;
and allocating operation authority to each organization substructure in the target organization architecture.
2. The method of claim 1, wherein the step of configuring the target organizational structure of the target account based on the plurality of organizational substructure information and the permission information for each of the organizational substructures comprises:
determining architecture level information, department information of each level of architecture and position information contained in a department based on the plurality of organization substructure information and authority information of each organization substructure;
determining a basic organization architecture based on the number of levels in the architecture level information and the incidence relation between each layer of organization architecture;
determining a plurality of departments of each level of organization in the basic organization architecture based on the department information of each level of architecture;
determining configuration personnel information of each department in the basic organization framework based on the post information;
and outputting the target organization architecture based on the plurality of departments of each level of organization in the basic organization architecture and the configuration personnel information of each department.
3. The method of claim 2, wherein after configuring the target organizational structure of the target account based on the plurality of organizational substructure information and the rights information for each of the organizational substructures, the rights management method further comprises:
when the organization architecture instruction is an architecture adjustment instruction, determining organization adjustment information, department adjustment information and personnel adjustment information;
adding or deleting the organization of the target organization architecture according to the organization adjustment information;
adding or deleting departments under the target organization according to the department adjustment information;
and adding or deleting the personnel posts under the target department according to the personnel adjustment information.
4. The method of claim 2, wherein the step of assigning operation rights to each organization substructure in the target organization architecture comprises:
determining organization function information of each level of organization;
and distributing the function authority for each level of organization in the target organization architecture based on the organization function information of each level of organization.
5. The method of claim 2, wherein the step of assigning operation rights to each organization substructure in the target organization architecture comprises:
determining the post function information of each post under each department;
and performing position authority authorization for each position in the target organization framework based on the position function information of each position under each department.
6. The method of claim 2, wherein the step of assigning operation rights to each organization substructure in the target organization architecture comprises:
assigning all permissions to administrators in the target organizational structure;
and allocating the position authority to the department personnel in the target organization structure.
7. The method of claim 1, wherein after assigning the operational rights to each organization substructure in the target organization architecture, the rights management method further comprises:
and updating data information in an organization database corresponding to the target organization architecture in a cloud database.
8. An authority management device applied to an application platform as a service (APaaS) platform, the authority management device comprising:
the system comprises a receiving unit, a processing unit and a processing unit, wherein the receiving unit is used for receiving an organization architecture instruction of a target account, and the organization architecture instruction at least carries a plurality of organization substructure information and authority information of each organization substructure;
a response unit, configured to configure a target organization architecture of the target account based on the plurality of organization substructure information and the authority information of each of the organization substructures in response to the organization architecture instruction;
and the distribution unit is used for distributing operation authority to each organization substructure in the target organization architecture.
9. An electronic device, comprising:
a processor; and
a memory for storing executable instructions of the processor;
wherein the processor is configured to perform the rights management method of any of claims 1-7 via execution of the executable instructions.
10. A computer-readable storage medium, comprising a stored computer program, wherein when the computer program runs, the computer-readable storage medium controls a device to execute the rights management method according to any one of claims 1-7.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110241003.4A CN113158225A (en) | 2021-03-04 | 2021-03-04 | Authority management method and device and electronic equipment |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202110241003.4A CN113158225A (en) | 2021-03-04 | 2021-03-04 | Authority management method and device and electronic equipment |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN113158225A true CN113158225A (en) | 2021-07-23 |
Family
ID=76884193
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202110241003.4A Pending CN113158225A (en) | 2021-03-04 | 2021-03-04 | Authority management method and device and electronic equipment |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN113158225A (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117273479A (en) * | 2023-08-21 | 2023-12-22 | 杭州微宏科技有限公司 | Group data management system, method and storage medium |
-
2021
- 2021-03-04 CN CN202110241003.4A patent/CN113158225A/en active Pending
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN117273479A (en) * | 2023-08-21 | 2023-12-22 | 杭州微宏科技有限公司 | Group data management system, method and storage medium |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US10616132B2 (en) | Managing user privileges for computer resources in a networked computing environment | |
| US9832205B2 (en) | Cross provider security management functionality within a cloud service brokerage platform | |
| CN102567115B (en) | Distribute for information technology resources in cloud system and utilize the apparatus and method of following the tracks of | |
| US10176453B2 (en) | Ensuring resilience of a business function by managing resource availability of a mission-critical project | |
| US20190250696A1 (en) | Power sharing among user devices | |
| Akande et al. | Management issues with cloud computing | |
| CN108769258A (en) | Method and apparatus for block chain network to be hosted in block chain application platform | |
| CN108898306B (en) | Order allocation method, device, medium and electronic equipment | |
| US9848064B2 (en) | Generation and distribution of named, definable, serialized tokens | |
| CN110138855A (en) | Development resources cloud platform and resource share method | |
| CN109327553A (en) | A kind of operation management system and method towards IaaS cloud platform | |
| CN111352737A (en) | Container cloud computing service platform based on resource pool | |
| DE112020005373T5 (en) | AUTHENTICATION MECHANISM USING POSITION CONFIRMATION | |
| US10222849B2 (en) | Power phase energy level monitoring and management in a data center | |
| CN113158225A (en) | Authority management method and device and electronic equipment | |
| CN110881039A (en) | Cloud security management system | |
| CN108462745B (en) | Novel cloud platform resource management and delivery method and device | |
| US10769281B2 (en) | Compliant software component infrastructure deployment | |
| US10600037B2 (en) | Efficient scheduling of maintenance for power distribution systems | |
| CN112346628A (en) | Special shared resource certificate management method, system and electronic equipment | |
| US20180167273A1 (en) | Determining identities for executing cloud processing and approvers of the executing | |
| US12020204B2 (en) | Scalability of physical storage spaces | |
| CN115695210A (en) | Cloud server deployment method and device, electronic equipment and storage medium | |
| CN114493756A (en) | Resource management method, device, equipment and storage medium | |
| US20230177242A1 (en) | Digital twin airflow modeling |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |