CN114067473A - Access control authority management method, device and equipment in comprehensive scheduling system - Google Patents
Access control authority management method, device and equipment in comprehensive scheduling system Download PDFInfo
- Publication number
- CN114067473A CN114067473A CN202010789542.7A CN202010789542A CN114067473A CN 114067473 A CN114067473 A CN 114067473A CN 202010789542 A CN202010789542 A CN 202010789542A CN 114067473 A CN114067473 A CN 114067473A
- Authority
- CN
- China
- Prior art keywords
- access control
- data
- control authority
- permission
- access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Images
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/30—Individual registration on entry or exit not involving the use of a pass
- G07C9/38—Individual registration on entry or exit not involving the use of a pass with central registration
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/20—Individual registration on entry or exit involving the use of a pass
- G07C9/27—Individual registration on entry or exit involving the use of a pass with central registration
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Storage Device Security (AREA)
Abstract
The application discloses an access control authority management method in a comprehensive scheduling system, which comprises the following steps: receiving an access control authority management message; acquiring first access control authority data, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system; and generating a response message corresponding to the access control authority management message according to the first access control authority data. The method can conveniently and directly manage the access control authority, and can improve the safety of line operation because the system switching is not needed in the process of managing the access control authority.
Description
Technical Field
The present disclosure relates to the field of computer technologies, and in particular, to a method, a device, and a system for managing access permissions in an integrated scheduling system.
Background
In the field of rail transit, an Integrated Operation Scheduling System (IOSS) is generally used to centrally monitor and manage trains and devices on a line, such as ticket selling devices, monitoring devices, and access control devices.
At present, when an integrated scheduling system is used to manage access control devices on a line, management of access control permissions is generally implemented through a client of an Access Control System (ACS), for example, for issuing cards, that is, handling items of an access card for a newly added person, or checking, modifying, adding, deleting items related to permission management, such as personnel permissions, the client provided by the third-party access control system is generally required to handle the items.
The existing method for managing the access control authority in the comprehensive scheduling system has the problem of inconvenience due to frequent system switching; on the other hand, the comprehensive scheduling system usually needs to display the monitoring data of various devices on the line in a full screen for 24 hours, and when the access control authority management is performed, because the currently displayed display interface of the comprehensive scheduling system needs to be exited and switched to the display interface of the client provided by the third-party access control system, a user cannot check the monitoring data on the line in the process of performing the access control authority management, and certain safety risks exist.
Disclosure of Invention
An object of the disclosed embodiment is to provide a new technical solution for access control authority management.
According to a first aspect of the present disclosure, a method for managing access permissions in an integrated scheduling system is provided, which is applied to an integrated scheduling server, and the method includes:
receiving an access control authority management message;
acquiring first access control authority data, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system;
and generating a response message corresponding to the access control authority management message according to the first access control authority data.
According to a second aspect of the present disclosure, the present disclosure further provides an access permission management apparatus applied to an integrated scheduling server, including:
the message receiving module is used for receiving the access control authority management message;
the system comprises an access control authority data acquisition module, a first access control authority data processing module and a second access control authority data processing module, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system;
and the response message generation module is used for generating a response message corresponding to the access control authority management message according to the first access control authority data.
According to a third aspect of the present disclosure, there is also provided an electronic device comprising the apparatus according to the second aspect of the present disclosure; alternatively, the electronic device includes: a memory for storing executable instructions; a processor configured to execute the electronic device according to the control of the instruction to perform the method according to the first aspect of the present disclosure.
The method has the advantages that in the operation process of the comprehensive scheduling system, when the access control authority is required to be managed, the comprehensive scheduling server of the comprehensive scheduling system does not need to switch to the client side provided by the access control system for operation, but obtains first access control authority data which is subjected to data synchronization processing with second access control authority data stored in the access control system according to the received access control authority management message, and can conveniently and quickly generate the response message corresponding to the access control authority management message according to the first access control authority data. The method can conveniently complete the management of the access control authority in the comprehensive scheduling system, and can improve the safety of line operation because the switching operation of a system interface is not needed in the process of managing the access control authority.
Other features of the present disclosure and advantages thereof will become apparent from the following detailed description of exemplary embodiments thereof, which proceeds with reference to the accompanying drawings.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of the specification, illustrate embodiments of the disclosure and together with the description, serve to explain the principles of the disclosure.
Fig. 1 is a schematic structural diagram of an integrated scheduling system according to an embodiment of the present disclosure.
Fig. 2 is a schematic flow chart of a method for managing access permissions in an integrated scheduling system according to an embodiment of the present disclosure.
Fig. 3 is a schematic diagram illustrating a flow of first access control permission data provided by an embodiment of the present disclosure.
Fig. 4 is a schematic diagram of a flow of second access permission data provided by the embodiment of the present disclosure.
Fig. 5 is a schematic block diagram of an access control authority management device according to an embodiment of the disclosure.
Fig. 6 is a schematic structural diagram of an electronic device provided in an embodiment of the present disclosure.
Detailed Description
Various exemplary embodiments of the present disclosure will now be described in detail with reference to the accompanying drawings. It should be noted that: the relative arrangement of the components and steps, the numerical expressions, and numerical values set forth in these embodiments do not limit the scope of the present disclosure unless specifically stated otherwise.
The following description of at least one exemplary embodiment is merely illustrative in nature and is in no way intended to limit the disclosure, its application, or uses.
Techniques, methods, and apparatus known to those of ordinary skill in the relevant art may not be discussed in detail but are intended to be part of the specification where appropriate.
In all examples shown and discussed herein, any particular value should be construed as merely illustrative, and not limiting. Thus, other examples of the exemplary embodiments may have different values.
It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, further discussion thereof is not required in subsequent figures.
< method examples >
In order to solve the problems that the prior art cannot directly provide access right management but needs to switch to a third-party access control system to execute the right management when the access right needs to be managed in the operation process of the integrated scheduling system, the integrated scheduling system is inconvenient and safe, the embodiment provides an access right management method in the integrated scheduling system, and please refer to fig. 1, which is a schematic structural diagram of the integrated scheduling system provided by the embodiment. As shown in fig. 1, according to the configuration characteristics of the integrated scheduling system, the method provided in this embodiment enables a user to directly manage the access right through the integrated scheduling system by integrating an access right management plug-in the integrated scheduling system; in addition, in order to ensure that the access control equipment in the line can be accurately monitored and controlled, and the authority of the user can be verified and controlled, the method provided by the embodiment keeps the server application of the access control system running in the server in the process of running the comprehensive scheduling system, and the server is responsible for monitoring and controlling the access control equipment on the line and verifying the authority of the user; when a user executes access control authority management through an access control authority management plug-in the comprehensive scheduling system, relative real-time synchronization of access control authority data stored in the comprehensive scheduling system and access control authority data stored in the access control system is guaranteed through a certain mechanism, and therefore the user can conveniently and accurately manage access control authority.
Fig. 2 is a schematic flowchart of a method for managing access permissions in an integrated scheduling system according to an embodiment of the present disclosure, where the method may be implemented by a server in the integrated scheduling system, for example, by an integrated scheduling server in charge of integrated scheduling.
Referring to FIG. 2, the method of the present embodiment may include the following steps S2100-S2300, which will be described in detail below.
And step S2100, receiving an access control authority management message.
In specific implementation, the terminal device can run a client application of the comprehensive scheduling system; when an operator or a user of the integrated scheduling system, namely an IOSS user needs to manage access control authority, an access control authority management message can be generated based on the triggering operation of the user in the access control authority management plug-in, and the terminal device sends the access control authority management message to the integrated scheduling server.
In this embodiment, the management operation of an operator or an IOSS user for the access control authority may be a "card issuing" operation, that is, adding information of a new person in the access control system and binding information of an access control card; or, operations such as "permission addition", "permission modification", "permission deletion" or "permission check" may be performed on a certain person; still alternatively, the operation may be "card swiping record viewing" for card swiping records or "door point information viewing" for door point information.
Step S2200, obtaining first access control authority data, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system.
The first access control authority data is data stored in the integrated dispatching system, and specifically may be data stored in an integrated dispatching server, and further may be data stored in a database communicatively connected to the integrated dispatching server.
The second access control permission data is data stored in the access control system, and may specifically be data stored in a server running a server application of the access control system, and further may be data stored in a database communicatively connected to the server.
In this embodiment, for convenience of querying and managing data, the first access control permission data is data stored in a database in communication connection with the integrated scheduling server, and the second access control permission data is data stored in a database in communication connection with a server running a server application of the access control system.
After the integrated scheduling server in the integrated scheduling system receives the access right management message, the integrated scheduling server can acquire the latest first access right data according to the message to respond to the message.
The embodiment provides a method for performing data synchronization on first access control authority data and second access control authority data, which specifically includes the following steps: acquiring the category information of processing items corresponding to the access control authority management message; according to the category information and the access control authority management message, obtaining a target access control authority data record to be synchronized in third access control authority data, wherein the third access control authority data comprises the first access control authority data and a data record to be subjected to data synchronization processing in the second access control authority data; and according to the target access control authority data record, performing data synchronous processing on the first access control authority data and the second access control authority data.
The third access permission data is used for storing data of access permission data records to be synchronized and synchronized, that is, may be interface data.
Corresponding to the first and second access permission data, in this embodiment, the third access permission data may also be data stored in a database, and the database may be in communication with the integrated scheduling server and a server running a server application of the access control system at the same time.
It should be noted that, in implementation, the databases storing the first, second, and third access permission data may be the same database, and in the databases, the three types of access permission data are kept logically isolated, for example, the first, second, and third access permission data may be data in different instances of the same database, respectively.
The obtaining of the category information of the processing item corresponding to the access control authority management message includes: when the processing item corresponding to the access control authority management message is an information change item, determining the category information as first category information for representing data change; and when the processing item corresponding to the access control authority management message is an information query item, determining the category information as second category information for representing data query.
In this embodiment, the information change event includes at least one of the following events: adding the entrance guard card items, the permission adding items, the permission modifying items and the permission deleting items; the information query transaction includes at least one of: the system comprises door point information inquiry items, authority information inquiry items and card swiping record inquiry items.
Please refer to fig. 3, which is a schematic flow diagram of first access control permission data provided by the embodiment of the disclosure. As shown in fig. 3, in the integrated scheduling system, for the management operation of the user for changing the access right, for example, operations such as "card issuing", "right adding", "right modifying", and "right deleting", the processing item corresponding to the access right management message corresponding to the user can be determined as the information change item, and the category information corresponding to the message can be determined as the first category information; and for the management operation of the user for viewing the access control authority, for example, the operations of "access point information viewing", "authority viewing", "card swiping record viewing", and the like, it may be determined that the processing item corresponding to the access control authority management message corresponding to the user is an information query item, and it may be determined that the category information corresponding to the message is the second category information.
In a specific implementation, when the category information is the first category information, the obtaining, according to the category information and the access right management message, a target access right data record to be synchronized in third access right data includes: generating the target access control authority data record in the third access control authority data according to the access control authority management message; setting the verification identification information in the target access control authority data record as first verification identification information representing that the data is not verified; and setting the synchronous identification information in the target entrance guard permission data record as first synchronous identification information representing that the data is not synchronous.
As shown in fig. 3, in the integrated scheduling system, when the card issuing operation is performed for the user, that is, when the processing item corresponding to the access right management message is an "newly added access card item", because the newly added access card relates to the personnel information and department information of the newly added personnel and the card information of the access card, and because the item needs to be verified and authorized by the service end of the access control system, the information needs to be written into the third access right data according to an agreed format, so that the service end of the access control system verifies and authorizes the data, and data synchronization of the two systems is realized.
Specifically, in the case that the processing item is a "newly added access card item", corresponding data records may be generated in the personnel information interface table, the department information interface table, and the card information interface table of the third access permission data as target access permission data records for the service end of the access control system to check.
Referring to fig. 3, in the integrated scheduling system, for the operation of changing the authority by the user, that is, the operations of "authority addition", "authority modification", and "authority deletion", the change information of the authority may be written into the third access authority data according to the agreed format, so that the service end of the access control system checks and authorizes the data, and the data synchronization of the two systems is realized.
Specifically, when the processing item is any one of the items such as the "addition item of authority", "modification item of authority", and "deletion item of authority", a corresponding data record may be generated in the authority information interface table of the third access authority data as the target access authority data record for the server of the access control system to verify.
After the target access control authority data record is obtained, data synchronous processing can be performed on the first access control authority data and the second access control authority data according to the target access control authority data record.
In specific implementation, the performing data synchronization processing on the first access control permission data and the second access control permission data according to the target access control permission data record includes: acquiring the verification identification information in the target access control authority data record according to a preset time interval; and under the condition that the verification identification information passes the verification of the representation data, updating the first access control permission data according to the target access control permission data record, wherein the second verification identification information is obtained after the access control system passes the verification of the target access control permission data record.
Please refer to fig. 4, which is a schematic flow diagram of second access control permission data provided in the embodiment of the present disclosure, for a target access control permission data record in third access control permission data, a server of an access control system may obtain the target access control permission data record according to a preset time interval, perform verification on data in the data record, and set verification identification information in the data record as second verification identification information representing that the data verification passes or as third verification identification information representing that the data verification fails according to a verification result after the verification is completed.
Correspondingly, the comprehensive scheduling server of the comprehensive scheduling system may also obtain the verification identification information in the target access permission data record according to the preset time interval, and update the data in the target access permission data record to the first access permission data stored in the comprehensive scheduling server under the condition that the verification identification information is the second verification identification information that represents that the data passes the verification.
It should be noted that, in order to save storage space, the integrated scheduling server may not update the first access control permission data stored in the integrated scheduling server, but directly generate a response message of "failed verification" to the user when the verification identification information in the target access control permission data record is the third verification identification information that represents that the data verification fails; of course, the target access right data record that fails to pass the verification may also be updated to the first access right data according to the requirement, which is not limited herein.
In addition, in this embodiment, in order to avoid repeated processing of data records, after the step of updating the first access permission data according to the target access permission data record, the method further includes: and setting the synchronous identification information in the target entrance guard permission data record as second synchronous identification information with synchronized representation data.
In the above, when the category information of the processing item corresponding to the access control permission management message is the first category information, how to perform the data synchronization processing on the first access control permission data and the second access control permission data is described in detail; hereinafter, when the type information of the processing item corresponding to the access right management message is the second type information, how to perform the data synchronization processing on the first access right data and the second access right data will be described.
In this embodiment, when the category information is the second category information, the obtaining, according to the category information and the access right management message, a target access right data record to be synchronized in third access right data includes: inquiring data records of which the synchronous identification information is first synchronous identification information representing unsynchronized data in a door point data record set and a card swiping data record set of the third access control authority data; and acquiring the target entrance guard authority data record according to the inquired data record.
Referring to fig. 3, in the integrated scheduling system, for the checking operation of the user on the access permission information, for example, the personnel permission information, the access point information, the card swiping record information, and the like, a data record matching the user inquiry information may be directly inquired in the permission information table or the card swiping record table of the first access permission data, and the data record is provided for the user to check.
In specific implementation, since the server of the access control system may generate a card-swiping record or update the access point information, in order to keep the data synchronization of the first access right data and the second access right data, as shown in fig. 4, when information generated or maintained by the access control system, for example, card-swiping record information, access point information, and the like, changes, the access control system may write the information into a card-swiping record information interface table or an access point information interface table of the third access right data according to a preset time interval, and set the synchronization identification information in the data record corresponding to the information as the first synchronization identification information representing that the data is not synchronized.
When the processing item corresponding to the access control authority management message received by the comprehensive scheduling server is a data query item, the comprehensive scheduling server may query an unsynchronized data record in a door point data record set and a card swiping data record set of the third access control authority data, that is, a door point information interface table and a card swiping record information interface table, as the target access control authority data.
As shown in fig. 4, in this case, after the comprehensive scheduling server obtains the target access permission data, according to the target access permission data record, performing data synchronization processing on the first access permission data and the second access permission data, including: and updating the first access control permission data according to the target access control permission data record.
After the step S2200, executing the step S2300, and generating a response message corresponding to the access right management message according to the first access right data.
After first access permission data which is subjected to data synchronization processing with second access permission data stored in an access control system is acquired, a response message corresponding to the access permission management message can be generated according to the first access permission data.
For example, when the access control authority management message is a modification operation for a certain user authority, a response message of successful modification or failed modification can be generated according to the verification result of the access control system on the authority modification information.
It should be noted that, after generating a response message corresponding to the access right management message according to the first access right data, the method provided in this embodiment further includes: and providing the response message to the terminal equipment so that the terminal equipment can show the processing result of the access control authority management operation executed by the user to the user according to the response message.
As can be seen from the above steps S2100 to S2300, in the access permission management method provided in this embodiment, in the operation process of the integrated scheduling system, when the access permission needs to be managed, the integrated scheduling server does not need to switch to the client provided by the access control system to perform operation, but obtains, according to the received access permission management message, the first access permission data that is subjected to data synchronization processing with the second access permission data stored in the access control system, and can conveniently and quickly generate the response message corresponding to the access permission association message according to the first access permission data. The method can directly and conveniently complete the management of the access control authority in the comprehensive scheduling system, and can improve the safety of line operation because the switching operation of a system interface is not needed in the process of the access control authority management.
< apparatus embodiment >
Corresponding to the above method embodiment, in this embodiment, an access right management apparatus is further provided, and as shown in fig. 5, the apparatus 5000 may include a message receiving module 5100, an access right data obtaining module 5200, and a response message generating module 5300.
The message receiving module 5100 is configured to receive an access right management message.
The access permission data obtaining module 5200 is configured to obtain first access permission data, where the first access permission data is data subjected to data synchronization processing with second access permission data, the first access permission data is data stored in the integrated scheduling system, and the second access permission data is data stored in the access control system.
In one embodiment, the apparatus 5000 further includes a data synchronization module, configured to obtain category information of a processing item corresponding to the access right management message; according to the category information and the access control authority management message, obtaining a target access control authority data record to be synchronized in third access control authority data, wherein the third access control authority data comprises the first access control authority data and a data record to be subjected to data synchronization processing in the second access control authority data; and according to the target access control authority data record, performing data synchronous processing on the first access control authority data and the second access control authority data.
In an embodiment, when the data synchronization module acquires the category information of the processing item corresponding to the access right management message, the data synchronization module may be configured to: when the processing item corresponding to the access control authority management message is an information change item, determining the category information as first category information for representing data change; and when the processing item corresponding to the access control authority management message is an information query item, determining the category information as second category information for representing data query.
In one embodiment, when the category information is the first category information, the data synchronization module obtains a target access permission data record to be synchronized in third access permission data according to the category information and the access permission management message, and includes: generating the target access control authority data record in the third access control authority data according to the access control authority management message; setting the verification identification information in the target access control authority data record as first verification identification information representing that the data is not verified; and setting the synchronous identification information in the target entrance guard permission data record as first synchronous identification information representing that the data is not synchronous.
In an embodiment, when the data synchronization module performs data synchronization processing on the first access control permission data and the second access control permission data according to the target access control permission data record, the data synchronization module may be configured to: acquiring the verification identification information in the target access control authority data record according to a preset time interval; and under the condition that the verification identification information passes the verification of the representation data, updating the first access control permission data according to the target access control permission data record, wherein the second verification identification information is obtained after the access control system passes the verification of the target access control permission data record.
In one embodiment, the data synchronization module may be further configured to: and setting the synchronous identification information in the target entrance guard permission data record as second synchronous identification information with synchronized representation data.
In an embodiment, when the category information is the second category information, the data synchronization module is configured to, when obtaining a target access permission data record to be synchronized in the third access permission data according to the category information and the access permission management message, be configured to: inquiring data records of which the synchronous identification information is first synchronous identification information representing unsynchronized data in a door point data record set and a card swiping data record set of the third access control authority data; and acquiring the target entrance guard authority data record according to the inquired data record.
In an embodiment, when the data synchronization module performs data synchronization processing on the first access control permission data and the second access control permission data according to the target access control permission data record, the data synchronization module may be configured to: and updating the first access control permission data according to the target access control permission data record. The response message generating module 5300 is configured to generate a response message corresponding to the access right management message according to the first access right data.
In one embodiment, the apparatus 5000 further includes a response message providing module configured to provide the response message to the terminal device.
< apparatus embodiment >
In this embodiment, an electronic device is further provided, which may include the access right management apparatus 5000 according to any embodiment of the present disclosure, and is configured to implement the access right management method in the integrated scheduling system provided in any embodiment of the present disclosure.
As shown in fig. 6, the electronic device 6000 can also include a processor 6200 and a memory 6000, the memory 6100 being configured to store executable instructions; the processor 6200 is configured to operate the electronic device according to the control of the instruction to execute the access right management method in the integrated scheduling system according to any embodiment of the disclosure.
The above modules of the apparatus 6000 may be implemented by the processor 6200 executing the instructions to execute the access right management method in the integrated scheduling system according to any embodiment of the present disclosure.
The present disclosure may be systems, methods, and/or computer program products. The computer program product may include a computer-readable storage medium having computer-readable program instructions embodied thereon for causing a processor to implement various aspects of the present disclosure.
The computer readable storage medium may be a tangible device that can hold and store the instructions for use by the instruction execution device. The computer readable storage medium may be, for example, but not limited to, an electronic memory device, a magnetic memory device, an optical memory device, an electromagnetic memory device, a semiconductor memory device, or any suitable combination of the foregoing. More specific examples (a non-exhaustive list) of the computer readable storage medium would include the following: a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), a Static Random Access Memory (SRAM), a portable compact disc read-only memory (CD-ROM), a Digital Versatile Disc (DVD), a memory stick, a floppy disk, a mechanical coding device, such as punch cards or in-groove projection structures having instructions stored thereon, and any suitable combination of the foregoing. Computer-readable storage media as used herein is not to be construed as transitory signals per se, such as radio waves or other freely propagating electromagnetic waves, electromagnetic waves propagating through a waveguide or other transmission medium (e.g., optical pulses through a fiber optic cable), or electrical signals transmitted through electrical wires.
The computer-readable program instructions described herein may be downloaded from a computer-readable storage medium to a respective computing/processing device, or to an external computer or external storage device via a network, such as the internet, a local area network, a wide area network, and/or a wireless network. The network may include copper transmission cables, fiber optic transmission, wireless transmission, routers, firewalls, switches, gateway computers and/or edge servers. The network adapter card or network interface in each computing/processing device receives computer-readable program instructions from the network and forwards the computer-readable program instructions for storage in a computer-readable storage medium in the respective computing/processing device.
The computer program instructions for carrying out operations of the present disclosure may be assembler instructions, Instruction Set Architecture (ISA) instructions, machine-related instructions, microcode, firmware instructions, state setting data, or source or object code written in any combination of one or more programming languages, including an object oriented programming language such as Smalltalk, C + + or the like and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The computer-readable program instructions may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or server. In the case of a remote computer, the remote computer may be connected to the user's computer through any type of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or the connection may be made to an external computer (for example, through the Internet using an Internet service provider). In some embodiments, the electronic circuitry that can execute the computer-readable program instructions implements aspects of the present disclosure by utilizing the state information of the computer-readable program instructions to personalize the electronic circuitry, such as a programmable logic circuit, a Field Programmable Gate Array (FPGA), or a Programmable Logic Array (PLA).
Various aspects of the present disclosure are described herein with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the disclosure. It will be understood that each block of the flowchart illustrations and/or block diagrams, and combinations of blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer-readable program instructions.
These computer-readable program instructions may be provided to a processor of a general purpose computer, special purpose computer, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions/acts specified in the flowchart and/or block diagram block or blocks. These computer-readable program instructions may also be stored in a computer-readable storage medium that can direct a computer, programmable data processing apparatus, and/or other devices to function in a particular manner, such that the computer-readable medium storing the instructions comprises an article of manufacture including instructions which implement the function/act specified in the flowchart and/or block diagram block or blocks.
The computer readable program instructions may also be loaded onto a computer, other programmable data processing apparatus, or other devices to cause a series of operational steps to be performed on the computer, other programmable apparatus or other devices to produce a computer implemented process such that the instructions which execute on the computer, other programmable apparatus or other devices implement the functions/acts specified in the flowchart and/or block diagram block or blocks.
The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present disclosure. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of instructions, which comprises one or more executable instructions for implementing the specified logical function(s). In some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams and/or flowchart illustration, and combinations of blocks in the block diagrams and/or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions. It is well known to those skilled in the art that implementation by hardware, by software, and by a combination of software and hardware are equivalent.
Having described embodiments of the present disclosure, the foregoing description is intended to be exemplary, not exhaustive, and not limited to the disclosed embodiments. Many modifications and variations will be apparent to those of ordinary skill in the art without departing from the scope and spirit of the described embodiments. The terminology used herein is chosen in order to best explain the principles of the embodiments, the practical application, or improvements made to the technology in the marketplace, or to enable others of ordinary skill in the art to understand the embodiments disclosed herein. The scope of the present disclosure is defined by the appended claims.
Claims (12)
1. The access control authority management method in the comprehensive scheduling system is applied to a comprehensive scheduling server and comprises the following steps:
receiving an access control authority management message;
acquiring first access control authority data, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system;
and generating a response message corresponding to the access control authority management message according to the first access control authority data.
2. The method of claim 1, wherein the method performs data synchronization processing on the first access control permission data and the second access control permission data by:
acquiring the category information of processing items corresponding to the access control authority management message;
according to the category information and the access control authority management message, obtaining a target access control authority data record to be synchronized in third access control authority data, wherein the third access control authority data comprises the first access control authority data and a data record to be subjected to data synchronization processing in the second access control authority data;
and according to the target access control authority data record, performing data synchronous processing on the first access control authority data and the second access control authority data.
3. The method according to claim 2, wherein the obtaining of the category information of the processing item corresponding to the access control authority management message includes:
when the processing item corresponding to the access control authority management message is an information change item, determining the category information as first category information for representing data change; and
and when the processing item corresponding to the access control authority management message is an information query item, determining the category information as second category information for representing data query.
4. The method according to claim 3, wherein, in a case that the category information is the first category information, obtaining a target access right data record to be synchronized in third access right data according to the category information and the access right management message comprises:
generating the target access control authority data record in the third access control authority data according to the access control authority management message;
setting the verification identification information in the target access control authority data record as first verification identification information representing that the data is not verified; and
and setting the synchronous identification information in the target entrance guard permission data record as first synchronous identification information representing that the data is not synchronous.
5. The method of claim 3, wherein the performing data synchronization processing on the first access control permission data and the second access control permission data according to the target access control permission data record comprises:
acquiring the verification identification information in the target access control authority data record according to a preset time interval;
and under the condition that the verification identification information passes the verification of the representation data, updating the first access control permission data according to the target access control permission data record, wherein the second verification identification information is obtained after the access control system passes the verification of the target access control permission data record.
6. The method of claim 5, wherein after the step of updating the first access rights data according to the target access rights data record, the method further comprises:
and setting the synchronous identification information in the target entrance guard permission data record as second synchronous identification information with synchronized representation data.
7. The method according to claim 3, wherein, when the category information is the second category information, obtaining a target access right data record to be synchronized in third access right data according to the category information and the access right management message comprises:
inquiring data records of which the synchronous identification information is first synchronous identification information representing unsynchronized data in a door point data record set and a card swiping data record set of the third access control authority data;
and acquiring the target entrance guard authority data record according to the inquired data record.
8. The method of claim 7, wherein the performing data synchronization processing on the first access control permission data and the second access control permission data according to the target access control permission data record comprises:
and updating the first access control permission data according to the target access control permission data record.
9. The method of claim 3, wherein the information change transaction comprises at least one of: adding the entrance guard card items, the permission adding items, the permission modifying items and the permission deleting items;
the information query transaction includes at least one of: the system comprises door point information inquiry items, authority information inquiry items and card swiping record inquiry items.
10. The method of claim 1, further comprising:
and providing the response message to the terminal equipment.
11. An access control authority management device is applied to an integrated scheduling server and comprises the following components:
the message receiving module is used for receiving the access control authority management message;
the system comprises an access control authority data acquisition module, a first access control authority data processing module and a second access control authority data processing module, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system;
and the response message generation module is used for generating a response message corresponding to the access control authority management message according to the first access control authority data.
12. An electronic device comprising the apparatus of claim 11; alternatively, the first and second electrodes may be,
the electronic device includes:
a memory for storing executable instructions;
a processor configured to execute the electronic device to perform the method according to the control of the instruction, wherein the method is as claimed in any one of claims 1 to 10.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010789542.7A CN114067473B (en) | 2020-08-07 | 2020-08-07 | Access control authority management method, device and equipment in comprehensive scheduling system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010789542.7A CN114067473B (en) | 2020-08-07 | 2020-08-07 | Access control authority management method, device and equipment in comprehensive scheduling system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114067473A true CN114067473A (en) | 2022-02-18 |
| CN114067473B CN114067473B (en) | 2023-01-06 |
Family
ID=80232877
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010789542.7A Active CN114067473B (en) | 2020-08-07 | 2020-08-07 | Access control authority management method, device and equipment in comprehensive scheduling system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114067473B (en) |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116935525A (en) * | 2023-08-24 | 2023-10-24 | 上海天跃科技股份有限公司 | Access control method, device, equipment, system and storage medium |
Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101009516A (en) * | 2006-01-26 | 2007-08-01 | 华为技术有限公司 | A method and system for data synchronization |
| US20090282125A1 (en) * | 2008-03-28 | 2009-11-12 | Jeide Scott A | Synchronizing Events Between Mobile Devices and Servers |
| CN104217288A (en) * | 2014-08-29 | 2014-12-17 | 广东建邦计算机软件有限公司 | Security management device and system for community comprehensive grid |
| CN104240014A (en) * | 2014-08-25 | 2014-12-24 | 中国航天科工集团第四研究院指挥自动化技术研发与应用中心 | Door access control method and door access control platform |
| US20150095280A1 (en) * | 2013-10-02 | 2015-04-02 | Canon Kabushiki Kaisha | Data synchronization method, data synchronization apparatus, and storage medium for synchronizing data among a plurality of databases |
| CN108961475A (en) * | 2017-05-19 | 2018-12-07 | 腾讯科技(深圳)有限公司 | A kind of gate inhibition's dispositions method and gate inhibition's deployment services device |
| CN109710688A (en) * | 2018-11-26 | 2019-05-03 | 福建天泉教育科技有限公司 | A kind of real-time Inspection method of data and message-oriented middleware |
| US20210192183A1 (en) * | 2018-09-11 | 2021-06-24 | Hitachi Kokusai Electric Inc. | Verification system and verification server |
-
2020
- 2020-08-07 CN CN202010789542.7A patent/CN114067473B/en active Active
Patent Citations (8)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101009516A (en) * | 2006-01-26 | 2007-08-01 | 华为技术有限公司 | A method and system for data synchronization |
| US20090282125A1 (en) * | 2008-03-28 | 2009-11-12 | Jeide Scott A | Synchronizing Events Between Mobile Devices and Servers |
| US20150095280A1 (en) * | 2013-10-02 | 2015-04-02 | Canon Kabushiki Kaisha | Data synchronization method, data synchronization apparatus, and storage medium for synchronizing data among a plurality of databases |
| CN104240014A (en) * | 2014-08-25 | 2014-12-24 | 中国航天科工集团第四研究院指挥自动化技术研发与应用中心 | Door access control method and door access control platform |
| CN104217288A (en) * | 2014-08-29 | 2014-12-17 | 广东建邦计算机软件有限公司 | Security management device and system for community comprehensive grid |
| CN108961475A (en) * | 2017-05-19 | 2018-12-07 | 腾讯科技(深圳)有限公司 | A kind of gate inhibition's dispositions method and gate inhibition's deployment services device |
| US20210192183A1 (en) * | 2018-09-11 | 2021-06-24 | Hitachi Kokusai Electric Inc. | Verification system and verification server |
| CN109710688A (en) * | 2018-11-26 | 2019-05-03 | 福建天泉教育科技有限公司 | A kind of real-time Inspection method of data and message-oriented middleware |
Non-Patent Citations (2)
| Title |
|---|
| 左国才: "教务管理系统与宿舍门禁控制系统的数据实时同步研究", 《智能计算机与应用》 * |
| 高树志: "城市轨道交通行业门禁系统线网平台方案设计", 《中国安防》 * |
Cited By (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116935525A (en) * | 2023-08-24 | 2023-10-24 | 上海天跃科技股份有限公司 | Access control method, device, equipment, system and storage medium |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114067473B (en) | 2023-01-06 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11005850B2 (en) | Access control for database | |
| CN109460413B (en) | Method and system for establishing account across block chains | |
| US11948196B2 (en) | Asset management techniques | |
| US9473486B2 (en) | Single sign on availability | |
| US9088563B2 (en) | Using service request ticket for multi-factor authentication | |
| CN112134956A (en) | Distributed Internet of things instruction management method and system based on block chain | |
| CN112910904B (en) | Login method and device of multi-service system | |
| CN110134930A (en) | Electronic contract management method, device, computer equipment and storage medium | |
| US9785791B2 (en) | Using a location authorization extension to provide access authorization for a module to access a computing system | |
| CN106156345B (en) | Item file deposits card method, deposits card equipment and terminal device | |
| CN114399292A (en) | Method, computing device and medium for controlling business approval process | |
| CN114067473B (en) | Access control authority management method, device and equipment in comprehensive scheduling system | |
| CN107797887A (en) | Data backup and restoration methods, device, storage medium and electronic equipment | |
| CN114117376A (en) | Identity authentication method, method for distributing dynamic password and corresponding equipment | |
| CN108701176B (en) | Authorized time lapse view of system and credential data | |
| US10303360B2 (en) | Replicating data in a data storage system | |
| US10860722B2 (en) | Security risk management system, server, control method, and non-transitory computer-readable medium | |
| CN108023732B (en) | Data protection method, device, equipment and storage medium | |
| CN111597112A (en) | Automatic test method and device and electronic equipment | |
| US10210315B2 (en) | Managing and tracking commands associated with a change on a computer system | |
| CN111435306A (en) | Code management method and device | |
| US9424406B2 (en) | Asset protection based on redundantly associated trusted entitlement verification | |
| US11088923B2 (en) | Multi-stage authorization | |
| US20210019234A1 (en) | Method, electronic device and computer program product for managing backup data | |
| JP2019204561A (en) | Cleaning work management server, cleaning work management system, and control method thereof and program |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |