CN117195181A - Control authority control method and device, computer equipment, storage medium - Google Patents

Abstract

The invention relates to the technical field of graphical user interfaces, and discloses a control method and device for control authority, computer equipment and a storage medium. Wherein the method comprises the following steps: acquiring first authority information, second authority information and a target service page, wherein the target service page comprises at least one data line; analyzing the target business page to obtain the user identity of the current user and a target control in the target business page; if the selected target data line exists in the target service page based on the message component, acquiring the current service operation type; and based on the user identity of the current user and the current business operation type, matching is carried out in the first authority information and the second authority information, and the target control is determined to correspond to the target use authority of the target data row. According to the scheme of the embodiment of the invention, the use of the memory of the client can be reduced, and the control efficiency of the control authority can be improved.

Description

Control authority control method and device, computer equipment, storage medium

Technical field

The present invention relates to the technical field of graphical user interfaces, and specifically to a method and device for controlling control permissions, computer equipment, and storage media.

Background technique

In related technologies, for the control of control permissions in business pages, the data rows bound to the controls usually obtain a large amount of subscription data through broadcasting, cache the large amount of subscription data in the client, and then obtain the large amount of subscription data from the From the query, it can be seen that this method not only causes a large amount of client memory to be occupied, but also reduces the control efficiency of control permissions.

Contents of the invention

In view of this, the present invention provides a method for controlling control permissions, a device, a computer device, and a storage medium, which can not only reduce the use of client memory, but also improve the control efficiency of control permissions.

In a first aspect, the present invention provides a method for controlling control permissions. The method includes:

Obtain first permission information and second permission information. The first permission information is used to indicate the correspondence between the user identity and the user role. The second permission information is used to indicate the correspondence between the business information and the usage permission of the control in the business page. Relationship, the business information includes the user role, business operation type and the business usage status of the control;

Obtain a target business page, where the target business page includes at least one data row;

Parse the target business page to obtain the user identity of the current user and the target control in the target business page;

If it is determined based on the message component that the selected target data row exists in the target business page, obtain the current business operation type;

Based on the user identity of the current user and the current business operation type, matching is performed in the first permission information and the second permission information to determine the target usage permission of the target control corresponding to the target data row.

The method for controlling control permissions provided by the embodiment of the present invention, by setting a message component, can use the message component to capture the selected target data in the target business page after obtaining the first permission information, the second permission information and the target business page. OK, then obtain the current business operation type, match the first permission information and the second permission information based on the user identity of the current user and the current business operation type, and determine that the target control corresponds to the The target usage permissions of the target data rows do not need to cache a large amount of subscription data, and find data rows from a large amount of subscription data. This not only reduces the use of client memory, but also improves the control efficiency of control permissions.

In some optional implementations, the first permission information and the second permission information are matched based on the user identity of the current user and the current business operation type, and it is determined that the target control corresponds to The target usage rights of the target data row include:

Match the user identity of the current user with the first permission information;

If the user identity of the current user matches the first permission information, the target user role of the current user is obtained;

The current business operation type and the target user role are matched with the second permission information to determine that the target control corresponds to the target usage permission of the target data row.

The method for controlling control permissions provided by the embodiment of the present invention matches the user identity of the current user with the first permission information, and can obtain the target user role of the current user when the user identity of the current user matches the first permission information. Then, by matching the current business operation type and target user role with the second permission information, it is possible to determine the target usage permission of the target control corresponding to the target data row, thus realizing control-level permission control without conflicting with menu-level permission control. . Moreover, the control permission control is not affected by module coding, has low coupling, is easy to transplant and use in various angularjs systems, and has good versatility.

In some optional implementations, the business operation type in the second permission information includes a first business operation type, and the current business operation type and the target user role are combined with the second permission information. The information is matched to determine the target usage rights of the target control corresponding to the target data row, including:

If the target user role matches the user role in the second permission information, and the target user role is a preset user role, and the current business operation type is consistent with the first business operation type, Match and determine the service usage status corresponding to the target control in the second permission information;

If the business usage status corresponding to the target control is an available status, it is determined that the target usage permission of the target control corresponding to the target data row is an available permission.

In the method for controlling control permissions provided by the embodiment of the present invention, the target user role matches the user role in the second permission information, and the target user role is a preset user role, and the current business operation type matches the first business operation type. In the case of matching, the business usage status corresponding to the target control in the second permission information can be determined, and then the business usage status corresponding to the target control is determined to determine the target usage permission of the target control corresponding to the target data row. If the target control corresponds to The business usage status is the available status, and it is determined that the target usage permission of the target control corresponding to the target data row is the available permission, thus realizing control of control-level permissions.

In some optional implementations, the method further includes:

If the target user role does not match the preset user role and the business usage status is an available status, it is determined that the target usage permission of the target control corresponding to the target data row is an available permission.

In the method for controlling control permissions provided by embodiments of the present invention, when the target user role does not match the preset user role, if the business usage status is the available status, the target usage permission of the target control corresponding to the target data row is the available permission.

In some optional implementations, when the target data row in the message component changes, the method further includes:

Parse the permission configuration parameters corresponding to the target control to obtain dynamic state parameters. The dynamic state parameters are used to indicate changes in the target data row;

Re-determine the service usage status of the target control according to the dynamic status parameter;

According to the business usage status, the target usage permission of the target control corresponding to the target data row is updated.

In the method for controlling control permissions provided by the embodiment of the present invention, when the target data row in the message component changes, the dynamic state parameters can be obtained by parsing the permission configuration parameters corresponding to the target control. At this time, the dynamic state parameters It can affect the business usage status of the target control. Therefore, the business usage status of the target control can be re-determined based on the dynamic status parameters. Finally, the target usage permissions of the target control corresponding to the target data row can be updated based on the business usage status.

In some optional implementations, the method further includes:

If it is determined based on the message component that there is no selected target data row in the target business page, determine the initial use permission of the target control based on the user identity of the current user, the first permission information and the second permission information. .

In some optional implementations, determining the initial usage permission of the target control based on the user identity of the current user, the first permission information, and the second permission information includes:

Match the user identity of the current user with the first permission information;

If the user identity of the current user matches the first permission information, the target user role of the current user is obtained;

Match the target user role with the second permission information to determine the initial usage permission of the target control.

In some optional implementations, determining the service usage status corresponding to the target control in the second permission information includes:

Based on the function let crushStatus=ref(value:"pool|edit|"+(poolSelectRow.value.Status==4)+"|crushstatus|"), determine the corresponding value of the target control in the second permission information Business usage status.

In a second aspect, the present invention provides a control device for control authority, including:

The first acquisition module is used to obtain the first permission information and the second permission information. The first permission information is used to indicate the corresponding relationship between the user identity and the user role. The second permission information is used to indicate the business information and the business page. The corresponding relationship between the usage rights of the control in the control, and the business information includes the user role, business operation type, and the business usage status of the control;

The second acquisition module is used to acquire the target business page, where the target business page includes at least one data row;

A parsing module, used to parse the target business page to obtain the user identity of the current user and the target control in the target business page;

The third acquisition module is used to acquire the current business operation type if it is determined based on the message component that there is a selected target data row in the target business page;

A first usage authority determination module, configured to match the first authority information and the second authority information based on the user identity of the current user and the current business operation type, and determine that the target control corresponds to the Target usage rights for the target data row.

In some optional implementations, the first usage rights determination module specifically includes:

The first matching sub-module is used to match the user identity of the current user with the first permission information;

The first user role determination submodule is used to obtain the target user role of the current user if the user identity of the current user matches the first permission information;

The first usage permission determination sub-module is used to match the current business operation type and the target user role with the second permission information, and determine the target usage permission of the target control corresponding to the target data row.

In some optional implementations, the business operation type in the second permission information includes the first business operation type, and the usage permission determination submodule specifically includes:

The service usage status determining unit is configured to determine if the target user role matches the user role in the second permission information, and the target user role is a preset user role, and the current business operation type is the same as the user role in the second permission information. The first service operation type matches, and the service usage status corresponding to the target control in the second permission information is determined;

A usage authority determining unit is configured to determine that the target usage authority of the target control corresponding to the target data row is an available authority if the business usage status corresponding to the target control is an available state.

In some optional implementations, the control permission control device also includes:

The second usage authority determination module is used to determine that the target usage authority of the target control corresponding to the target data row is if the target user role does not match the preset user role and the business usage status is an available state. Available permissions.

In some optional implementations, when the target data row in the message component changes, the control permission control device further includes:

A dynamic state parameter confirmation module is used to parse the permission configuration parameters corresponding to the target control to obtain dynamic state parameters. The dynamic state parameters are used to indicate changes in the target data row;

A business usage status determination module, configured to re-determine the business usage status of the target control according to the dynamic status parameters;

An update module, configured to update the target usage rights of the target control corresponding to the target data row according to the business usage status.

In some optional implementations, the control permission control device also includes:

The third usage authority determination module is configured to determine based on the user identity of the current user, the first authority information and the second authority information if it is determined based on the message component that there is no selected target data row in the target business page. Determine the initial usage rights of the target control.

In some optional implementations, the third usage rights determination module specifically includes:

The second matching submodule is used to match the user identity of the current user with the first permission information;

The second user role determination submodule is used to obtain the target user role of the current user if the user identity of the current user matches the first permission information;

The second usage permission determination sub-module is used to match the target user role with the second permission information and determine the initial usage permission of the target control.

In some optional implementations, the service usage status determination unit specifically includes:

The service usage status determination subunit is used to determine the second permission information based on the function let crushStatus=ref(value:"pool|edit|"+(poolSelectRow.value.Status==4)+"|crushstatus|") The service usage status corresponding to the target control in .

In a third aspect, the present invention provides a computer device, including: a memory and a processor. The memory and the processor are communicatively connected to each other. Computer instructions are stored in the memory, and the processor executes the computer instructions to execute the first aspect. Or the method for controlling control permissions in any of its corresponding embodiments.

In a fourth aspect, the present invention provides a computer-readable storage medium. Computer instructions are stored on the computer-readable storage medium. The computer instructions are used to cause the computer to execute the control authority of the above-mentioned first aspect or any of its corresponding embodiments. control method.

Description of the drawings

In order to more clearly explain the specific embodiments of the present invention or the technical solutions in the prior art, the accompanying drawings that need to be used in the description of the specific embodiments or the prior art will be briefly introduced below. Obviously, the drawings in the following description The drawings illustrate some embodiments of the present invention. For those of ordinary skill in the art, other drawings can be obtained based on these drawings without exerting any creative effort.

Figure 1 is a schematic diagram of an optional control authority control system provided by an embodiment of the present application;

Figure 2 is a flow chart of a method for controlling control permissions according to an embodiment of the present invention;

Figure 3 is a schematic diagram of a target business page according to an embodiment of the present invention;

Figure 4 is a flow chart of another control method for controlling permissions according to an embodiment of the present invention;

Figure 5 is a flow chart of yet another control method for controlling permissions according to an embodiment of the present invention;

Figure 6 is a schematic diagram of a control device for control authority provided by an embodiment of the present application;

FIG. 7 is a schematic structural diagram of an optional computer device provided by an embodiment of the present invention.

Detailed ways

In order to make the purpose, technical solutions and advantages of the embodiments of the present invention clearer, the technical solutions in the embodiments of the present invention will be clearly and completely described below in conjunction with the drawings in the embodiments of the present invention. Obviously, the described embodiments These are some embodiments of the present invention, rather than all embodiments. Based on the embodiments of the present invention, all other embodiments obtained by those skilled in the art without creative efforts fall within the scope of protection of the present invention.

Referring to FIG. 1 , FIG. 1 is a schematic diagram of an optional control authority control system provided by an embodiment of the present application. The control authority control system includes a terminal 101 .

For example, the terminal 101 can obtain first permission information and second permission information. The first permission information is used to indicate the corresponding relationship between the user identity and the user role, and the second permission information is used to indicate the business information and the use of controls in the business page. Corresponding relationship of permissions, business information includes user role, business operation type and business usage status of the control, and then obtains the target business page, which includes at least one data row, and parses the target business page to obtain the user of the current user For the target control in the identity and target business page, if it is determined based on the message component that there is a selected target data row in the target business page, the current business operation type is obtained, and then based on the user identity of the current user and the current business operation type, in the first permission information Match with the second permission information to determine the target usage permission of the target control corresponding to the target data row. Finally, the target usage permission of the target control corresponding to the target data row can be displayed on the target business page of the terminal 101, so that the current user can Operate the target data row based on the target control.

The terminal 101 can be a laptop computer, a desktop computer, etc., and no examples are given here.

It is worth noting that the control of control permissions is generally implemented by the web itself and will not be bound and interacted with the backend.

There are currently two main implementation methods for controlling control permissions in business pages. The first is to directly control whether the control is available through the disabled attribute. This method can only be used in systems with small business volumes. Because at this time, the permissions of each control must be hard-coded in the business, which is equivalent to placing tiny permission controls on each page, and later maintenance is quite difficult; the second is to verify the control through public configuration, which is Controls with the same operating mode are used for permission control. Among them, the second way to bind data is to bind dynamic data, that is, to confirm whether the control is available based on the fields of the dynamic data. For example, the field must be turned on before the control is available. However, the dynamic data is obtained through data subscription, that is, the dynamic data is obtained through broadcasting. It can be seen that subscribing to dynamic data is to browse the changes of a message directly from the entire scope, without looking at the source of the message, but it needs to be obtained from a massive amount of Browse slowly through the content. Therefore, this method not only causes a large amount of client memory to be occupied, but also reduces the control efficiency of control permissions.

Based on this, embodiments of the present invention provide a method for controlling control permissions, a device, a computer device, and a storage medium, which can not only reduce the use of client memory, but also improve the control efficiency of control permissions.

According to an embodiment of the present invention, an embodiment of a control authority control method is provided. It should be noted that the steps shown in the flow chart of the accompanying drawings can be executed in a computer system such as a set of computer executable instructions, and, Although a logical sequence is shown in the flowcharts, in some cases the steps shown or described may be performed in a sequence different from that herein.

This embodiment provides a method for controlling control permissions, which can be used in the above terminal. Figure 2 is a flow chart of a method for controlling control permissions according to an embodiment of the present invention. As shown in Figure 2, the process includes the following steps:

Step S201: Obtain first authority information and second authority information.

Among them, the first permission information is used to indicate the corresponding relationship between the user identity and the user role, and the second permission information is used to indicate the corresponding relationship between the business information and the usage permission of the controls in the business page. The business information includes user roles, business operation types and controls. business usage status.

Specifically, each user identity has a unique user role. For example, the user identity can be superuser (super user), admin_user (ordinary user), resource_user (resource user), readonly_user (read-only user), device_user (device user). ). The usage rights of controls corresponding to each user role are different. The same user role can have the usage rights of multiple controls.

In an optional implementation, the first permission information can be configured in the following way, namely

export const buttonPermissionsOption={

//Device discovery. Key name (business module): key value (user role)

pool:"super_user,root,admin_user"

………

}

Among them, pool represents the storage pool function, super_user, and admin_user represent the storage pool function that can only be used by super users and ordinary users.

For another example, the first permission information is configured in the following way, namely

export const buttonPermissionsOption={

//Device discovery. Key name (business module): key value (user role)

pool:"super_user,root,admin_user,readonly user,resource user,device_user"

………

}

Among them, pool represents the storage pool function, super_user, root, admin_user, readonly user, resource user, and device_user represent the storage pool function that can be used by super users, ordinary users, read-only users, resource users, and device users.

In some optional implementations, the second permission information is value|action|state|dynamicName, where value is the user role, that is, whether the user role of the current user matches the user role in the first permission information. Action is a business operation type, and user roles include create, edit, delete, and all. Among them, create represents a new business; edit represents an editing business; delete represents a deletion of a business; and all represents unlimited business, that is, all are available. state is the business use state. When state is true, it means that the control is in an unavailable state; when state is false, it means that the control is in an available state. Here it may be that the switch affects the business usage status of the control. For example, the business operation type is editing business, then the sharing switch is turned on, that is, the state is false before editing can be performed. It may also be a column value judgment. For example, the storage pool is in a normal state before shrinking can be performed. Capacity operation, etc. dynamicName is a dynamic state parameter, which is used when the target data row in the message component changes in subsequent steps, and will not be described again here. It should be noted that the priority of dynamic status parameters is higher than the priority of business usage status, and the priority of business usage status is higher than the priority of business operation type.

For example, the new business can be specifically configured as let createStatus=ref(value:"pool|create"); the editing business can be specifically configured as let editstatus=ref(value:"pool|edit"); among which, the editing business will automatically Related data rows.

For example, the business usage status can be obtained through the function let capInfoStatus=ref(value:"pool|edit|"+(deployType.indexof('san')<0)), where deployType is the deployment mode, because deployType is already You know, so the result of deployType.indexof('san')<0 is directly assigned to state. Among them, deployType.indexof('san')<0) means that there is currently no deployment block business. Therefore, status is true (that is, true is assigned to state), so the control is in an unavailable state.

For example, the service usage status can also be obtained through the function let crushStatus=ref(value:"pool|edit|"+(poolSelectRow.value.status==4)+"|crushstatus|"), where poolSelectRow.value. status is a dynamic value. If poolSelectRow.value.status is 4, it means that the storage pool is abnormal and cannot be reduced. At this time, poolSelectRow.value.status is converted to true or false to determine whether the control is available. In addition, because only when the data row is selected during the operation, poolSelectRow.value.status can be used to determine whether the control is available, and because the state is currently changing dynamically, you need to use dynamicName at this time. Here the dynamicName is named "crushstatus". Used when the target data row in the message part changes.

It should be noted that when the target data row in the message component changes, in addition to placing the data row in the message component (i.e. store.selectRows), the crushstatus must also be placed in the status container of the message component (i.e. store.state) Save in.

Step S202: Obtain the target business page.

When the terminal loads the target business page, it can obtain the target business page, where the target business page includes at least one data row. For example, as shown in Figure 3, the target business page includes multiple data rows, and the data row includes Name, creation time and other information.

Step S203: Parse the target business page to obtain the user identity of the current user and the target control in the target business page.

If the current user logs in to the target business page, or the current user loads the target business page on the terminal, the target business page can be parsed to obtain the user identity of the current user and all target controls in the target business page. Among them, the target control is the control on the target business page, such as "delete", "rollback", "swipe down" and other controls as shown in Figure 3.

In some optional implementations, you can call v-permisson="crushStatus" to bind the control to the target business page, that is, let crushStatus="ref(value:"pool|edit|"+(poolSelectRow.value.status ==4)+"|crushstatus|") configuration is passed to the permission component, and the control permissions are controlled through the permission component.

It should be noted that as long as the control is bound to v-permission, it means that the page loading element is forced to use the unified control logic of the permission component.

Step S204: If it is determined based on the message component that the selected target data row exists in the target business page, obtain the current business operation type.

For example, every time there is a selected target data row in the target business page, the message component will use the store.selectRows method to capture the target data row and store the target data row.

Specifically, in the target business page, every time the table component has a data row, the data content in the data row is assigned to the specified array. For example, the data content in the data row is stored in store.selectRows.

Among them, gridStoreHook.$subscribe(multation, store) of the message component can be called inside the permission component to determine whether there is a data row selected in the target business page. gridStoreHook is the message source, and subscribe is the subscription method. If a data row is selected in the target business page, for example, a data row is selected from no data row, or two data rows are selected from one data row, the function gridStoreHook.$subscribe(multation, store) will be actively executed.

Step S205: Match the first permission information and the second permission information based on the user identity of the current user and the current business operation type to determine the target usage permission of the target control corresponding to the target data row.

The current business operation type may be to select all data rows in the target business page, or to select multiple data rows, or to select a certain data row, etc., where the selected data row is the target data row.

In addition, by matching the user identity of the current user with the first permission information, matching the result of matching the user identity of the current user with the first permission information, and matching the current business operation type with the second permission information, it can be determined that the target control corresponds to Target usage rights for the target data row.

The control permission control method provided by this embodiment, by setting the message component, can use the message component to capture the selected target data row in the target business page after obtaining the first permission information, the second permission information and the target business page, and then Obtain the current business operation type, match the first permission information and the second permission information based on the current user's user identity and the current business operation type, and determine that the target control corresponds to the target usage permission of the target data row without the need to cache a large number of Subscription data, search for data rows from a large amount of subscription data, that is to say, you no longer need to monitor data changes in all business scopes, you only need to monitor the status changes of targeted control permissions affected by the actual business, which not only reduces The use of client memory also improves the control efficiency of control permissions.

This embodiment provides a method for controlling control permissions, which can be used in the above-mentioned terminal. Figure 4 is a flow chart of a method for controlling control permissions according to an embodiment of the present invention. As shown in Figure 4, the process includes the following steps:

Step S401: Obtain first permission information and second permission information.

For details, please refer to step S201 in the embodiment shown in Figure 2, which will not be described again here.

Step S402: Obtain the target business page.

Please refer to step S202 in the embodiment shown in Figure 2 for details, which will not be described again here.

Step S403: Parse the target business page to obtain the user identity of the current user and the target control in the target business page.

Please refer to step S203 in the embodiment shown in Figure 2 for details, which will not be described again here.

Step S404: If it is determined based on the message component that the selected target data row exists in the target business page, obtain the current business operation type.

Please refer to step S204 in the embodiment shown in Figure 2 for details, which will not be described again here.

Step S405: Based on the user identity of the current user and the current business operation type, match the first permission information and the second permission information to determine the target usage permission of the target control corresponding to the target data row.

Specifically, the above step S405 includes:

Step S4051: Match the user identity of the current user with the first permission information.

Specifically, you can use the _.includes(a,role) method to determine whether the current user has business operation permissions for the target business page. If the result returned by _.includes(a,role) is true, it means that the current user has the storage pool. (i.e. the target business page) business operation permissions, where a is the user identity and role is the user role. Use the _.includes(a,role) method to determine whether the first permission information contains the user role of the current user. On the contrary, if _.includes(a, role) is false, it means that the matching is unsuccessful, that is, the current user does not have business operation permissions for the target business page.

Step S4052: If the user identity of the current user matches the first permission information, obtain the target user role of the current user.

Match the user identity of the current user with the first authority information, that is, match the user identity of the current user with the user identity in the first authority information. If the user identity of the current user matches a user identity in the first authority information, When matching, the corresponding target user role can be found in the corresponding relationship between the user identity and the user role based on the user identity in the first permission information.

Step S4053: Match the current business operation type and the target user role with the second permission information to determine the target usage permission of the target control corresponding to the target data row.

The current business operation type can be new business, edit business, delete business or unrestricted business (i.e. all). Among them, edit business and delete business are both associated with the target data row, while new business and unrestricted business may have nothing to do with the target data row.

In the embodiment including steps S4051 to S4053, by matching the user identity of the current user with the first authority information, the target user role of the current user can be obtained when the user identity of the current user matches the first authority information. , and then by matching the current business operation type and target user role with the second permission information, it can be determined that the target control corresponds to the target usage permission of the target data row, thereby realizing control-level permission control, which is different from menu-level permission control. conflict. Moreover, the control permission control is not affected by module coding, has low coupling, is easy to transplant and use in various angularjs systems, and has good versatility.

In some optional implementations, the business operation type in the second permission information includes the first business operation type, and the above step S4053 specifically includes:

Step a1: If the target user role matches the user role in the second permission information, and the target user role is the preset user role, and the current business operation type matches the first business operation type, determine the target in the second permission information. The business usage status corresponding to the control.

Among them, the first business operation type is unrestricted business, and the default user role is read-only user. For the method of determining the service usage status corresponding to the target control in the second permission information, please refer to step S201 of the embodiment shown in Figure 2, which will not be described again here.

Step a2: If the business usage status corresponding to the target control is the available status, determine that the target usage permission corresponding to the target data row of the target control is the available permission.

In some optional implementations, if the target user role does not match the preset user role and the business status is the available status, it is determined that the target usage permission of the target control corresponding to the target data row is the available permission.

Further, in some optional implementations, when the target data row in the message component changes, that is, when the selected target data row captured by the message component changes, the permission configuration parameters corresponding to the target control can be parsed to obtain Dynamic state parameters, where the dynamic state parameters are used to indicate changes in the target data row, and then re-determine the business usage status of the target control based on the dynamic status parameters. At this time, the business usage status can be stored in store.state, and finally based on Business usage status, update the target usage permission of the target control corresponding to the target data row.

Specifically, when the target data row in the message component changes, the target data row will be placed in the message component (i.e. store.selectRows). The permission configuration parameters corresponding to the target control are parsed to obtain the dynamic status parameters. Therefore, The crushstatus can also be saved in the state container of the message component (i.e. store.state). Therefore, you can loop to query whether there are dynamic state parameters in store.state. When there are dynamic state parameters in store.state, you can take out the dynamic state. The business usage status corresponding to the parameter. At this time, the business usage status is the latest status obtained through the current business operation. The newly obtained business usage status will overwrite the initialized business usage status. Among them, the business usage status can directly control the display of the control. hidden.

Among them, gridStoreHook.$subscribe(multation, store) of the message component can be called inside the permission component to determine whether the target data row has changed. gridStoreHook is the message source, and subscribe is the subscription method. If the target data row changes, for example, a data row is selected from no data row, or two data rows are selected from one data row, the function gridStoreHook.$subscribe(multation, store) will be actively executed.

In some optional implementations, if it is determined based on the message component that the selected target data row does not exist in the target business page, the initial usage permission of the target control is determined based on the current user's user identity, first permission information, and second permission information.

In some optional implementations, by calling v-permisson="crushStatus", the pool is parsed into value (i.e. user role), that is, the target user role matched in the first permission information is parsed into the second permission information. user role; parse the character edit into action (i.e. business operation type), that is, parse the current business operation type into the business operation type in the second permission information. The main function is to determine whether the data row is associated; parse the judgment result of crushStatus into state (that is, business usage status), that is, the business usage status passed over. If the above parsed item does not exist, the business usage status is automatically converted to false for processing. If the state is false, the target control is available.

Furthermore, if v-permission has no value, the target usage permission of the target control is the available permission, that is, the target control is lit.

In addition, by parsing the character edit into action, it can be determined whether the current business operation type is associated with a data row. For example, if the action is to create a business or not restrict a business, then it can be determined that the current business operation type is not associated with a data row.

In some optional implementations, the initial usage permissions of the target control are determined based on the current user's user identity, first permission information, and second permission information. Specifically, the user identity of the current user can be matched with the first permission information, If the user identity of the current user matches the first permission information, the target user role of the current user is obtained. Finally, the target user role is matched with the second permission information to determine the initial usage permission of the target control.

For example, if the user identity of the current user does not match the first permission information, determine that the initial usage permission of the target control is an unavailable permission.

Further, if the target user role matches the second permission information, the initial usage permission of the target control needs to be determined based on the current business operation type and the business usage status corresponding to the target control.

In some optional implementations, when no data row is selected in the target business page, the initial usage permission of the target control can also be determined in many ways. For example, the business operation type in the second permission information also includes the second Business operation type. If the current business operation type does not match the second business operation type or the first business operation type, and/or the business usage status corresponding to the target control is unavailable, the initial use permission of the target control is unavailable permission. , where the second business operation type is create business; for another example, if the current business operation type matches the second business operation type, and the user identity of the current user is a read-only user, the initial usage permission of the target control is unavailable permission , that is, the target control is rendered gray.

It can be understood that the first permission information and the second permission information in the embodiment of this application can be configured separately, and the internal control permissions of the business can be controlled by themselves; the logical internal processing of control permissions, the data row subscription mechanism, etc. can be implemented as components and can be fully universal; In addition, the status change monitoring mechanism processing in the embodiment of the present application allows the control to change with the actual value of the business scenario, and can be used universally no matter how complex the application scenario is.

In order to explain more clearly the process of controlling control permissions, a specific example is used to illustrate below.

Referring to Figure 5, first, the current user performs page operations on the target business page, and then determines based on the message component that the selected target data row exists in the target business page, that is, the target data row is subscribed, and the target data row can be stored in the data storage unit , at this time, you can perform permission parsing on the target control on the target business page, that is, parse the business information of the target control (ie, user role, business operation type, and business usage status of the control). Before parsing the target control, you need to configure the third First authority information and second authority information. After parsing the target control, you need to bind the target control to the control component (ie, permission component), associate the target control with the preset function v-permission, and then use the control component based on the user identity of the current user and the current business operation type. Match the first permission information and the second permission information to determine that the target control corresponds to the target usage permission of the target data row, that is, match the user identity with the first permission information. If the user identity of the current user matches the first permission information, Match, obtain the target user role of the current user, and match the current business operation type and target user role with the second permission information. If the target user role matches the user role in the second permission information, and the target user role is default User role, and the current business operation type matches the first business operation type, determine the business usage status corresponding to the target control in the second permission information, if the business usage status corresponding to the target control is available, perform control permission processing, that is It is determined that the target usage permission of the target control corresponding to the target data row is the available permission. Finally, the usage permission of the control is fed back to the business page for display in the form of rendering.

Referring to Figure 6, one embodiment of the present application also provides a control device for control permissions, including:

The first acquisition module 601 is used to obtain the first permission information and the second permission information. The first permission information is used to indicate the corresponding relationship between the user identity and the user role, and the second permission information is used to indicate the relationship between the business information and the controls in the business page. Correspondence of usage rights, business information includes user role, business operation type and business usage status of the control;

The second acquisition module 602 is used to acquire the target business page, which includes at least one data row;

The parsing module 603 is used to parse the target business page and obtain the user identity of the current user and the target control in the target business page;

The third acquisition module 604 is used to acquire the current business operation type if it is determined based on the message component that there is a selected target data row in the target business page;

The first usage permission determination module 605 is configured to match the first permission information and the second permission information based on the user identity of the current user and the current business operation type, and determine the target usage permission of the target control corresponding to the target data row.

In some optional implementations, the first usage rights determination module 605 specifically includes:

The first matching sub-module is used to match the user identity of the current user with the first permission information;

The first user role determination submodule is used to obtain the target user role of the current user if the user identity of the current user matches the first permission information;

The first usage permission determination sub-module is used to match the current business operation type and target user role with the second permission information, and determine the target usage permission of the target control corresponding to the target data row.

In some optional implementations, the business operation type in the second permission information includes the first business operation type, and the usage permission determination submodule specifically includes:

The business usage status determination unit is configured to determine the first business operation type if the target user role matches the user role in the second permission information, and the target user role is a preset user role, and the current business operation type matches the first business operation type. 2. The business usage status corresponding to the target control in the permission information;

The usage permission determination unit is used to determine that the target usage permission corresponding to the target data row of the target control is the available permission if the business usage status corresponding to the target control is available.

In some optional implementations, the control permission control device also includes:

The second usage permission determination module is used to determine that the target usage permission of the target control corresponding to the target data row is the available permission if the target user role does not match the preset user role and the business usage status is available.

In some optional implementations, when the target data row in the message component changes, the control permission control device also includes:

The dynamic state parameter confirmation module is used to parse the permission configuration parameters corresponding to the target control to obtain dynamic state parameters. The dynamic state parameters are used to indicate changes in the target data row;

The business usage status determination module is used to re-determine the business usage status of the target control based on dynamic status parameters;

The update module is used to update the target usage rights of the target control corresponding to the target data row according to the business usage status.

In some optional implementations, the control permission control device also includes:

The third usage permission determination module is used to determine the initial usage permission of the target control based on the current user's user identity, first permission information and second permission information if it is determined based on the message component that the selected target data row does not exist in the target business page.

In some optional implementations, the third usage rights determination module specifically includes:

The second matching sub-module is used to match the user identity of the current user with the first permission information;

The second user role determination submodule is used to obtain the target user role of the current user if the user identity of the current user matches the first permission information;

The second usage permission determination sub-module is used to match the target user role with the second permission information and determine the initial usage permission of the target control.

In some optional implementations, the service usage status determination unit specifically includes:

The service usage status determination subunit is used to determine the second permission information based on the function let crushStatus=ref(value:"pool|edit|"+(poolSelectRow.value.Status==4)+"|crushstatus|") The service usage status corresponding to the target control in .

The above-mentioned control device for controlling permissions and the method for controlling control permissions are based on the same inventive concept. By setting the message component, after obtaining the first permission information, the second permission information and the target business page, the message component can be used to capture the target business page. Select the target data row, and then obtain the current business operation type. Based on the user identity of the current user and the current business operation type, match the first permission information and the second permission information to determine the target use of the target control corresponding to the target data row. Permissions are obtained without the need to cache a large amount of subscription data and to find data rows from a large amount of subscription data. This not only reduces the use of client memory, but also improves the control efficiency of control permissions.

The control device for control authority in this embodiment is presented in the form of a functional module. The module here refers to an Application Specific Integrated Circuit (ASIC for short), a processor and a processor that executes one or more software or fixed programs. memory, and/or other devices that can provide the above functions.

Further functional descriptions of the above-mentioned modules and units are the same as those in the above-mentioned corresponding embodiments, and will not be described again here.

An embodiment of the present invention also provides a computer device having a control device with the control authority shown in FIG. 6 .

Please refer to Figure 7. Figure 7 is a schematic structural diagram of a computer device provided by an optional embodiment of the present invention. As shown in Figure 7, the computer device includes: one or more processors 10, a memory 20, and a device for connecting The interfaces of each component include high-speed interfaces and low-speed interfaces. Various components communicate with each other using different buses and can be installed on a common motherboard or in other ways as needed. The processor may process instructions executed within the computer device, including instructions stored in or on memory to display graphical information of the GUI on an external input/output device, such as a display device coupled to the interface. In some alternative implementations, multiple processors and/or multiple buses may be used with multiple memories and multiple memories, if desired. Likewise, multiple computer devices may be connected, each device providing part of the necessary operation (eg, as a server array, a set of blade servers, or a multi-processor system). Figure 7 takes a processor 10 as an example.

The processor 10 may be a central processing unit, a network processor, or a combination thereof. The processor 10 may further include a hardware chip. The above-mentioned hardware chip can be an application-specific integrated circuit, a programmable logic device or a combination thereof. The above-mentioned programmable logic device may be a complex programmable logic device, a field programmable logic gate array, a general array logic or any combination thereof.

The memory 20 stores instructions that can be executed by at least one processor 10, so that the at least one processor 10 executes the method shown in the above embodiment.

The memory 20 may include a stored program area and a stored data area, wherein the stored program area may store an operating system and an application program required for at least one function; the stored data area may store the use of the computer device according to the presentation of a small program landing page. The data created etc. In addition, the memory 20 may include high-speed random access memory, and may also include non-transitory memory, such as at least one magnetic disk storage device, flash memory device, or other non-transitory solid-state storage device. In some optional implementations, the memory 20 may optionally include memories remotely located relative to the processor 10 , and these remote memories may be connected to the computer device through a network. Examples of the above-mentioned networks include but are not limited to the Internet, intranets, local area networks, mobile communication networks and combinations thereof.

The memory 20 may include a volatile memory, such as a random access memory; the memory may also include a non-volatile memory, such as a flash memory, a hard disk or a solid state drive; the memory 20 may also include a combination of the above types of memories.

The computer device also includes a communication interface 30 for the computer device to communicate with other devices or communication networks.

Embodiments of the present invention also provide a computer-readable storage medium. The above-mentioned method according to the embodiment of the present invention can be implemented in hardware or firmware, or can be recorded in a storage medium, or can be implemented as original storage downloaded through the network. Computer code in a remote storage medium or a non-transitory machine-readable storage medium and to be stored in a local storage medium such that the methods described herein may be stored on a computer using a general purpose computer, a special purpose processor, or programmable or special purpose hardware Such software processing on storage media. The storage medium may be a magnetic disk, an optical disk, a read-only memory, a random access memory, a flash memory, a hard disk or a solid state drive, etc.; further, the storage medium may also include a combination of the above types of memories. It can be understood that a computer, processor, microprocessor controller or programmable hardware includes a storage component that can store or receive software or computer code. When the software or computer code is accessed and executed by the computer, processor or hardware, the above implementations are implemented. The method illustrated.

Although the embodiments of the present invention have been described in conjunction with the accompanying drawings, those skilled in the art can make various modifications and variations without departing from the spirit and scope of the invention, and such modifications and variations fall within the scope of the appended rights. within the scope of the requirements.

Claims (11)

1. A method for controlling control authority, characterized in that the method includes: Obtain first permission information and second permission information. The first permission information is used to indicate the correspondence between the user identity and the user role. The second permission information is used to indicate the correspondence between the business information and the usage permission of the control in the business page. Relationship, the business information includes the user role, business operation type and the business usage status of the control; Obtain a target business page, where the target business page includes at least one data row; Parse the target business page to obtain the user identity of the current user and the target control in the target business page; If it is determined based on the message component that the selected target data row exists in the target business page, obtain the current business operation type; Based on the user identity of the current user and the current business operation type, matching is performed in the first permission information and the second permission information to determine the target usage permission of the target control corresponding to the target data row. 2. The method according to claim 1, characterized in that, based on the user identity of the current user and the current business operation type, matching is performed in the first authority information and the second authority information to determine The target control corresponds to the target usage rights of the target data row, including: Match the user identity of the current user with the first permission information; If the user identity of the current user matches the first permission information, the target user role of the current user is obtained; The current business operation type and the target user role are matched with the second permission information to determine that the target control corresponds to the target usage permission of the target data row. 3. The method according to claim 2, characterized in that the business operation type in the second permission information includes a first business operation type, and the current business operation type and the target user role are Match with the second permission information to determine that the target control corresponds to the target usage permission of the target data row, including: If the target user role matches the user role in the second permission information, and the target user role is a preset user role, and the current business operation type is consistent with the first business operation type, Match and determine the service usage status corresponding to the target control in the second permission information; If the business usage status corresponding to the target control is an available status, it is determined that the target usage permission of the target control corresponding to the target data row is an available permission. 4. The method according to claim 2, characterized in that, the method further comprises: If the target user role does not match the preset user role and the business usage status is an available status, it is determined that the target usage permission of the target control corresponding to the target data row is an available permission. 5. The method according to claim 3 or 4, characterized in that when the target data row in the message component changes, the method further includes: Parse the permission configuration parameters corresponding to the target control to obtain dynamic state parameters. The dynamic state parameters are used to indicate changes in the target data row; Re-determine the service usage status of the target control according to the dynamic status parameter; According to the business usage status, the target usage permission of the target control corresponding to the target data row is updated. 6. The method according to claim 1, characterized in that, the method further comprises: If it is determined based on the message component that there is no selected target data row in the target business page, determine the initial use permission of the target control based on the user identity of the current user, the first permission information and the second permission information. . 7. The method according to claim 6, wherein determining the initial usage permission of the target control based on the user identity of the current user, the first permission information and the second permission information includes: : Match the user identity of the current user with the first permission information; If the user identity of the current user matches the first permission information, the target user role of the current user is obtained; Match the target user role with the second permission information to determine the initial usage permission of the target control. 8. The method of claim 3, wherein determining the service usage status corresponding to the target control in the second permission information includes: Based on the function let crushStatus=ref(value:"pool|edit|"+(poolSelectRow.value.Status==4)+"|crushstatus|"), determine the corresponding value of the target control in the second permission information Business usage status. 9. A control device for control authority, characterized in that it includes: The first acquisition module is used to obtain the first permission information and the second permission information. The first permission information is used to indicate the corresponding relationship between the user identity and the user role. The second permission information is used to indicate the business information and the business page. The corresponding relationship between the usage rights of the control in the control, and the business information includes the user role, business operation type, and the business usage status of the control; The second acquisition module is used to acquire the target business page, where the target business page includes at least one data row; A parsing module, used to parse the target business page to obtain the user identity of the current user and the target control in the target business page; The third acquisition module is used to acquire the current business operation type if it is determined based on the message component that there is a selected target data row in the target business page; A first usage authority determination module, configured to match the first authority information and the second authority information based on the user identity of the current user and the current business operation type, and determine that the target control corresponds to the Target usage rights for the target data row. 10. A computer device, characterized in that it includes: A memory and a processor, the memory and the processor are communicatively connected to each other, the memory stores computer instructions, and the processor executes any one of claims 1 to 8 by executing the computer instructions. The control method of control permissions. 11. A computer-readable storage medium, characterized in that computer instructions are stored on the computer-readable storage medium, and the computer instructions are used to cause the computer to execute the control authority described in any one of claims 1 to 8 control method.