JP2012118778A - Content data management apparatus and program thereof - Google Patents

Abstract

PROBLEM TO BE SOLVED: To facilitate access control to content data.SOLUTION: A server 3 accepts an access request to content data from a user terminal 3 and performs processing depending on a determination result of whether the access is allowed. A content data management program 51 of a content data management system 5 manages content information D2. A content data display program 52 outputs content display file data, when the access is allowed. When the access is not allowed, the content data display program 52 outputs group registration screen data. A log-in management program 53 confirms a user by using user unique information. An access propriety determination program 54 receives an access request and retrieves content that is accessible by the user to determine whether the access is allowed. A user group management program 55 manages user group information D4.

Description

The present invention relates to a content data management apparatus and a program for managing content data accessed by a user terminal and its access right and controlling access to the content data.

  In order to realize Internet communication using the HTTP (Hyper Text Transfer Protocol) protocol and the HTML (Hyper Text Markup Language) language in the World Wide Web (WWW) system, file data written in the HTML language is stored on the web server. Although the simplest method is to arrange in the file structure, it takes a considerable amount of knowledge and effort to create file data and transfer data to the server.

  Recently, development of server-side applications such as CGI (Common Gateway Interface) has progressed, bulletin board systems have been developed, and even general users who are not server administrators are unaware of the server file structure, only with a web browser, Open communication with relatively short documents is possible.

  A content management system such as a blog system enables the content data to be provided beautifully without the need for display settings such as cascading style sheets and display auxiliary functions such as JAVA (registered trademark) scripts. Communication is becoming easier, and so many users are sending various information. In many cases, this content management system is a system linked with a web server, and uses an OS (Operating System) file system or a database to generate an HTML file.

In addition, when providing certain content data, a method that depends on a server or a content management system is generally used as an access control method that permits only a specific user to provide the content data. As a method depending on the server, there is BASIC authentication or the like, but an access management system in which a server administrator performs setting or directly operates a setting file is required. As a method that depends on the content management system, the system is provided with a user access management function, thereby enabling content disclosure in accordance with the user's request.

Patent Document 1 discloses a content data management apparatus and its program that can easily limit access to content data without requiring specialized knowledge or complicated settings.

JP 2010-073187

  However, in the content data management apparatus and the program thereof, the content data whose access is controlled is associated with a user group permitted to view the content data, and the person who intends to receive the provision of the content data has received the content data. It is difficult to intuitively understand which content data can be browsed by subscribing to which group because it is made to browse data on the condition that it belongs to a user group permitted to disclose .

  The present invention has been made in view of the above problems, and a main object thereof is to facilitate an operation of access control to content data.

  In order to solve the above problems, the present invention is a content data management apparatus capable of communicating with a user terminal used by a user of content data and managing the content data accessed by the user terminal, the storage unit And a processing unit, wherein the storage unit includes user information including a user ID for identifying a user, content information including content data and a content ID for identifying the content data, and the use An access permission information including a user ID of the user and a content ID of content data accessible by the user, and the processing unit refers to the user information and accesses the content data. User identification means for identifying the user ID of the user of the user terminal that transmitted the request, referring to the content information, Content specifying means for specifying the content ID of the content data requested to be accessed, the user ID specified by the user specifying means, the content ID specified by the content specifying means, and the access permission And determining whether the user can access the content data based on the information, and when the access permission determining unit determines that the user can access the content data, the content data is transferred to the user terminal. When the content data transmission means to be transmitted and the access permission determination means determine that access is impossible, a registration screen for the access permission information is transmitted to the user terminal, and an access permission registration request is received from the user terminal. , The access permission information by associating the user ID with the content ID An access permission registration means for storing, characterized in that it comprises a.

According to this configuration, access to content data is restricted by determining the users who can access each content data, and among users registered in advance, users who cannot access content data are required. Access is possible accordingly. According to this, access to the content data can be freely restricted, while viewers of the content data can be easily recruited.

  In addition, when the user browses the content data, if the user is not registered in the access permission information, a registration screen for the access permission information is automatically displayed, and the user can register himself / herself. This eliminates the need for troublesome registration work by the content data manager.

  Also, in the present invention, the content information includes a directory entry, and the content can have a tree structure. The content information includes an access determination inheritance flag. When accessing the content data, if the access determination of the parent content is inherited, it is determined whether or not the parent content can be accessed retroactively. If not, whether the access can be performed by the user ID and the content ID is determined. It may be judged

  According to this configuration, the content data administrator can place a plurality of content data having the same release condition under the directory entry, and the user only has to register the access permission of the parent directory entry. It is possible to browse without registering access permission for the subordinate content data.

  The present invention further includes content display file generation means for generating a content display file that can be displayed on the user terminal based on a predetermined content data display format from the content data permitted to be accessed. The content ID of the data and the additional usable content information associated with the content ID of the content data to which access should be additionally permitted when it is determined that the access to the content data is permitted are stored, and the access is permitted When it is determined that access to the content data is possible, the determination unit may determine that access to content that should be additionally permitted is permitted based on the additional available content information.

According to this configuration, a series of content display files can be generated by combining content data to be accessed and other content data, and the content display files can be made public.
In addition, even when other content data combined with the content data to be accessed does not have an access right inheritance relationship, a series of content display files are generated without registering a new access permission, and the content display files are It can be made public.

In addition, if the content data managed by the second user (B) is additionally registered as the content to be allowed to access to the content data managed by the first user (A), the first user (A) may be permitted to use the content data managed by the second user (B) and be able to generate a series of content display files.
According to this, various content data can be displayed on one screen by using content data by other providers in accordance with an agreement between the content data providers. Therefore, a user can construct a website without specialized knowledge by being permitted to use content data managed by other users.

In the present invention, the content data may include text data, image data, moving image data, application data, a style sheet, and a script.
According to this configuration, it is possible to transmit high-level information by a simple method without being limited by the limits of its own specialized knowledge and skills.

  In the present invention, when the content information permits the content data to be used in combination with content data managed by another user who can access the content data, the content data An additional availability flag indicating that the content data managed by the user can become additional content, and the additional availability flag is set in the content information for the first record Additional content setting means for registering as a content ID to which access should be additionally allowed may be further provided in the second record of additional content.

  In the present invention, content (alias data) having no substance of content data may be registered in the content information, and a content ID may be provided.

  According to this configuration, a user who is permitted to generate a content display file can set a unique group of a series of contents that should additionally be allowed to access the content display file. It is possible to set a child (grandchild) group of the set group.

  According to this, the third user who is a viewer can access the content data additionally permitted to access only by obtaining the access permission of the content data. In addition, the group can have a multi-level parent-child relationship, and can be clearly defined even if there are complex rights states for each element of the content display file.

  In the present invention, the content information further includes a price point required when a predetermined user registers in the access permission information, an expiration date or a payment date, and the user information includes the user information Further including a score of the price possessed by the user, when the user is registered in the access permission information, in the user information, from the score possessed by the user to the score possessed by the content manager, It is good also as providing the price transfer means to move the score corresponding to the said required price.

According to this configuration, by registering in the access permission information, the user can use the content data of other users who are additionally permitted to access the content data. Pay the price.
According to this, for example, image data provided for a fee is used between the administrator of the content data that needs to be permitted to access and the user who is the administrator of the content data that should additionally be permitted to access. A style sheet can be provided for a fee, and character content using the style sheet can be provided for a fee. Each data provider can easily obtain a price. Therefore, active creative activities in each elemental field can be expected. Further, it may further include an expiration date or a due date in addition to the price of the price for which the access permission information is required, and the score may be transferred from the access permission information registrant to the content data manager every predetermined period.

  The present invention includes a content data management program. In addition, the problems disclosed in the present application and the solutions thereof will be clarified by the column of the best mode for carrying out the invention and the drawings.

According to the present invention, access control to content data can be facilitated.
According to this, if the user registers the user on the server, the access right of the content data and the web page can be easily set. Therefore, the producer can easily obtain the price by selling the access right. By performing the additional permission setting, it is not necessary to perform a large number of access right acquisition procedures when acquiring the access right.

  Also, even if different producers want to provide data for text and illustrations, manga dialogues and pictures, the price of access rights is automatically set by setting the access rights appropriately based on mutual agreements. Can be distributed.

In addition, since it is easy for an administrator of a child group to sell access rights on behalf of a content group, content producers who do not want to disclose their personal information for sale should follow their arrangements with the sales agent. You can get the price by selling access rights.

It is a figure which shows the structure of web system WS. It is a figure which shows the structural example of the user information D1. It is a figure which shows the structural example of content information D2. It is a figure which shows the structural example of the access permission information D3. It is a figure which shows the structural example of additional content information D4. It is a figure which shows the structural example of session information D5. It is a flowchart which shows the flow of a content display file production | generation process. It is a flowchart which shows the flow of an access permission registration process. It is a flowchart which shows the flow of the subroutine of a user confirmation process. It is a flowchart which shows the flow of the subroutine of a price distribution process. It is a figure which shows an Example.

  Hereinafter, embodiments of the present invention will be described with reference to the drawings.

≪System configuration and overview≫
FIG. 1 is a diagram illustrating a configuration of the web system WS. A user terminal 1 used by a user and a server 3 storing content data are connected to a network 2 such as the Internet, and can communicate with each other via the network 3. The server 3 includes a web server 4, a content data management system 5, and a storage device 6, and an interface between the web server 4 and each program of the content data management system 5 is provided by CGI. The content data includes text data, image data, moving image data, application data, style sheets, and scripts. Application data includes, for example, Flash data. swf etc.

  The web server 4 obtains at least an access request from the user terminal 1 by using the fact that the user can be specified by the session establishment means by the web browser of the user terminal 1 and the web server 4. The stored identification information of the user is stored, or the IP address of the user terminal 1 and the identification information of the user are stored.

  The content data management system 5 includes a content data management program 51, a content data display program 52, a login management program 53, an access permission determination program 54, an additional content management program 56, an access permission management program 55, and a price settlement processing program 57. Each program is executed by a CPU (Central Processing Unit).

  The content data management program 51 manages and edits the content information D2 in response to an instruction to the server 3 performed by the administrator of each content data providing content data using the web browser of each user terminal 1 And record.

  When the access to the content data is permitted, the content data display program 52 arranges the stored data according to the display format and outputs the data of the content display file as the content display file generation means. When the access is not permitted As an access permission registration means, data of an access permission registration screen that is a registration screen of a user who can access the content data according to the display format is output. The output data is transmitted from the server 3 to the user terminal 1 and displayed on the display of the user terminal 1.

  The login management program 53 confirms the user based on the user-specific information input by the user through the user terminal 1.

  When the access permission determination program 54 receives the access request from the user terminal 1 from the user terminal 1, the access permission determination program 54 refers to the content information D2, identifies the target content data from the path information, reads the content ID of the content data, The user ID of the user is read based on the login information of the user, the access permission information is searched, and access permission is determined.

  The access permission management program 55 manages, edits, and records the access permission information D3 in response to an instruction to the server 3 performed by the administrator of each content data using the web browser of each user terminal 1. . As actual processing, when the user newly applies for access permission to the content, the access permission information D3 is updated. In this case, when a price is set as an individual setting in the content information D2, the price settlement processing program 57 is activated to perform a procedure for distributing and transferring the price between users.

  The additional content management program 56 manages, edits, and records the additional content information D4 in response to an instruction to the server 3 performed by the administrator of each content data using the web browser of each user terminal 1. . As an actual process, the administrator of each content data registers, in the additional content information D4, a content ID that should be additionally permitted to be browsed by a user who is permitted to browse any content data.

  The storage device 6 is a non-volatile storage device such as a flash memory or a hard disk device that functions as user information storage means, content information storage means, and access permission information storage means, and includes user information D1, content information D2, and access permission. Information D3, additional content information D4, and session information D5 are stored.

≪Data configuration example≫
Next, each piece of information in the storage device 6 will be described.
FIG. 2 is a diagram illustrating a configuration example of the user information D1. The user information D1 is registered in the user registration process and is information for confirming the user. The user name D11, the user ID D12, the login ID D13, the login password D14, the user mail address D15, and the point balance D16 are registered. Consists of records that contain User name D11 is the name of the user. The user IDD 12 is unique information (identification number or the like) for identifying the user. The login IDD 13 is an ID (person identification information) used for identity verification when the user logs in to the server 3. The login password D14 is a password (identification information) used for identity verification when the user logs in to the server 3.

  The user mail address D15 is an electronic mail address for contacting the user. The score balance D16 is a score balance that the user has. The score is a numerical value recorded as money or other value that can be converted and is paid as a price when the user registers in the access permission information, while the user is an administrator of the content data Other users may be allowed access to the content data and distributed as a price for the administrator when registering in the access permission information.

  FIG. 3 is a diagram illustrating a configuration example of the content information D2. The content information D2 is information related to the content data registered in the content registration process, and includes content ID D21, path information D22, administrator ID D23, access right inheritance flag D24, additional available flag D25, price point D26, and price distribution rate. Consists of records including D27. The content IDD 21 is unique information (identification number or the like) for identifying content data. The path information D22 indicates a file structure in the server 3 among path information for calling content data through the network. The manager IDD 23 is unique information for identifying a user who is a manager of content data. The access right inheritance flag D24 indicates that the access permission determination of the upper content in the file structure in the server 3 is inherited. The additional available flag D25 registers the content data in the additional available content information as content that should be additionally permitted when the content data administrator is permitted to access other content data. It is also good.

  The price point D26 is a price point charged to the user registered in the access permission information, and is usually paid to the administrator of the content, but a part thereof may be paid to the additional content. The price distribution rate D27 indicates a ratio of the price distributed to the additional content with respect to the price paid from the user registered in the access permission information. For example, since the price distribution rate D27 of the content IDC3 is 30%, 30% of the price is distributed to the additional content, and the remaining 70% is distributed to the administrator.

The content information D2 may further include an expiration date or a payment date. The expiration date is a time limit for validating access permission registration by collecting a price from the registrant. The payment date is information indicating the timing of collecting the price from registered users all at once.
In addition to the above, digital data that is the content data itself may be included as a record item of the content information D2.

FIG. 4 is a diagram illustrating a configuration example of the access permission information D3. The access permission information D3 is information related to the group registrant registered in the access permission registration process, and includes a record including a registration number D31, a content ID D32, a user ID D33, and an access level D34.
The registration number D31 is a number given for each access permission registration, and is, for example, a temporal order number. The content IDD 32 is unique information of content data that the user is permitted to access. The user IDD 33 is unique information of the authorized user. The access level D34 indicates the degree of access authority to the content, and includes a management level, writable, readable, and borrowable. Borrowable means that content data can be called to the site and generated as a display file.

  FIG. 5 is a diagram illustrating a configuration example of the additional content information D4. The additional content information D4 is information related to content data that is registered in the additional content registration process and should be permitted to be additionally accessed by a user who is permitted to access any content data. It consists of records including IDD 42 and additional content IDD 43.

The registration number D41 is a number given for each additional content information registration, and is, for example, a temporal order number. The content IDD 42 is unique information for identifying content data that the user is permitted to access. The additional content IDD 43 is a content ID of content data that should be permitted to be accessed in addition to the permitted content data.

  FIG. 6 is a diagram illustrating a configuration example of the session information D5. The session information D5 is information related to a session in which the user terminal 1 is logged in to the web server 4, and includes a record including a session ID D51, a user ID D52, and an expiration date D53. The session ID D51 is identification information unique to the session. For example, a random number is set for each serial number in the order of login. The user IDD 52 is a user ID unique to the user terminal 1 that has logged into the web server 4. The expiration date D53 is optional information that is not essential, and is the expiration date for which the session is valid. For example, a time after a predetermined time from the login time is set. Each record is set when the user terminal 1 logs in to the web server 4 and is logged out from the web server 4 or deleted after the expiration date has passed.

≪System processing≫
FIG. 7 is a flowchart showing the flow of content display file generation processing. As a premise of the process, a user using the user terminal 1 stores a login ID, a login password, and a user email address in the user information D1 in the storage unit 6 of the server 3 in advance, It is assumed that another user who is an administrator stores content data, path information, and accessible user group ID in the content information D2 in the storage unit 6 of the server 3 in advance.

  First, the user terminal 1 transmits a content request to the server 3 (step S701). The content request data includes a user ID and a URI (Uniform Resource Identifier) of the requested content. The server 3 receives the content request from the user terminal 1, and first calls a subroutine for user confirmation processing (step S702).

  Next, the server 3 specifies the content to be displayed from the URI included in the content request. That is, a character string after the host computer name is acquired as a resource name (path information) in a URL (Uniform Resource Locator) which is a form of URI, or a resource name (path information) is acquired by GET input or POST input. (Step S703).

  A record with matching path information is searched from the content information D2, and the content is confirmed (step S704). If the path information is not stored (step S704: No), the server 3 outputs an error or generates a display file describing that the content is not stored (step S712). Transmit (step S715) and end.

  When a record with matching path information is stored and the content can be confirmed (step S704: Yes), the server 3 searches the access permission information D3 for a record in which the user is registered, and the user An accessible content ID is acquired (step S705).

  Here, in order to collate the content that the user is permitted to access with the content that the user is trying to access, the access should be permitted by adding each content that the user is permitted to access. It is necessary to obtain the ID list of the additional content.

  Therefore, when the user ID is acquired and the user is specified, the additional content information D4 is searched (step S706), and one or more user group IDs in which the user is registered are acquired. . The user of the registered content of the user is regarded as registering additional content of the content. Therefore, all contents registered by the user are targeted (step S707), the additional content information D4 is referred to, and it is checked whether or not there is the additional content (step S708). If there is (step S708: Yes), the user is added as the content permitted to be accessed (step S709). Further, it is checked whether or not there is the additional content (additional content of the additional content) (step S708), and when all the additional content is verified so that the content ID does not overlap, the loop is terminated (step S710).

  Then, the server 3 compares the user group ID that can access the content with the ID of the user group to which the user who requests access belongs (including the ID of the additional content), thereby It is determined whether the user who requests access satisfies the access requirement (step S711).

  If the user who requests access satisfies the access requirement (step S711: Yes), the content data is read, and the content that can be displayed on the user terminal 1 based on the content data display format such as HTML or image data format A display file is generated (step S713), and the generated file is transmitted to the user terminal 1 (step S715).

  If the user who requests access does not satisfy the access requirements (step S711: No), a form file for applying for registration to the user group is generated (step S714), and the generated file is used as the user terminal 1 (Step S715).

The user terminal 1 receives the file from the server 3, and the web browser displays the received file (step S716). The displayed file includes error information, content display file, group registration application form, and the like.

  FIG. 8 is a flowchart showing the flow of access permission registration processing. This process is performed when the server 3 receives an access permission registration request from the user terminal 1.

The server 3 first calls a subroutine for user confirmation processing (S801). This is performed in order to confirm the user who transmitted the group registration request, as in S702 of FIG. Next, a subroutine for price distribution processing is called (step S802). Then, it is confirmed whether or not the price distribution processing subroutine is an error (step S803). If it is not an error (step S803: No), the user is added to the group (step S804). Specifically, in the access permission information D3, a record including a new registration number D31, the user group ID D32, and the user ID D33 is added. If there is an error (step S803: Yes), an error is output (step S805).

  FIG. 9 is a flowchart showing the flow of a user confirmation process subroutine. First, the web server 4 confirms a session based on information such as cookie transmitted by the web browser on the user terminal 1 side (step S901). More specifically, the user ID included in the content request is checked against the user ID set in the session information D5 by the login management program 53 at the time of login.

  If the session can be confirmed (step S901: Yes), the user ID is acquired (step S906).

If the user ID of the content request is not stored in the session information D5 and the session cannot be confirmed (step S901: No), the user ID and password are output from the login form output at the previous access from the user terminal 1. Is checked (step S902).
When the user ID and password are not transmitted (step S902: No), the login form is transmitted to the user terminal 1 (step S907). The user terminal 1 receives and displays the login form.

  Here, the user confirmation process may be terminated after the login form is transmitted, but access to all the contents is not necessarily restricted, so the content display finally generated for the login form is displayed. It may be included in a part of the file or displayed in a separate window.

When the user ID and password are received (step S902: Yes), the user information D1 is searched (step S903). If there is a record that matches the two (step S903: Yes), the user ID is regarded as the user, and the user ID is stored in the session information D5 (step S904).
If there is no record that matches the two (step S903: No), an error is output to the caller (step S905). The login form may be output again.

  FIG. 10 is a flowchart showing the flow of a subroutine for price distribution processing. This is a process of allocating the price paid by the user registered in the group to the manager of the group and the additional content.

  The server 3 first acquires price information of the corresponding group from the content information D2 (step S1001). The price information includes a price score D26 and a price distribution rate D27.

Next, the price of the price to be paid by the user is calculated (step S1002).
Subsequently, it is determined whether or not the user who desires access permission registration can pay the price (step S1003). Specifically, the user's score balance D16 is acquired from the user information D1, and it is determined whether or not the score balance D16 is equal to or greater than the calculated price point. If the user's score balance is smaller than the price point (step S1003: No), an error is output (step S1008), and the process ends.

  If the user's point balance is equal to or greater than the price point (step S1003: Yes), it is determined whether additional content is set for the user group (step S1004). Specifically, the additional content information D4 is referred to and it is determined whether or not the additional content ID D43 of the content is registered.

  When the additional content is registered (step S1004: Yes), the price is distributed to all the additional content (step S1005). Specifically, referring to the user group information D4, the price distribution rate D27 is added to the price point D26 of the content, and the integrated value is divided by the set number of the additional content IDD43. The division value is the price point distributed to one additional content. The payer in the process of step S1005 is usually a user who registers for access permission. However, if the administrator of the content makes the new registrant free of charge and pays the additional content by himself / herself, the management is performed. Become a person. When no additional content is set (step S1004: No), the price point is paid as it is to the manager of the content.

If an error such as the administrator's point balance being insufficient in the process of step S1005 occurs (step S1006: Yes), the process is interrupted and recovered, an error is output to the caller (step S1008), and the process ends.
If no error has occurred in the process of step S1005 (step S1006: No), the price point is moved from the payer to the payee (step S1007), and the process ends. Specifically, in the user information D1, the price point to be paid is subtracted from the point balance D16 of the payer, and the price points allocated to the point balance D16 of the payee are added.

<Example>
FIG. 10 is a diagram showing an embodiment of the web system WS, and particularly shows an example in which a writer, a publisher, and a reader exist as users and are applied to a business between them. Publishers become information providers and sellers of access rights to content, and novels and comics written by authors are stored in the server 3 from each user terminal 1, and publishers store their data. Edit, place, and set access rights to content. Readers get access to content from publishers and give points to publishers as a price. The publisher distributes points obtained from readers to each writer.

  For example, user D (publisher) sets co 5 (abbreviation of content access right 5; the same shall apply hereinafter), co 1, co 2 and co 3 as access rights to the content for the book. , 2 and 3 are set as additional contents of 5. On the other hand, chapters 1 to 3 of novel A are stored in server 3 as contents of user A (writer). Then, reference to Chapter 1 requires co 1, reference to Chapter 2 requires co 2, and reference to chapter 3 requires co 3. Here, user E (reader) purchases co5. Then, since Co 1, Co 2 and Co 3 are additional contents of Co 5, contents which can be referred to by Co 1, Co 2 and Co 3 can be browsed. In addition, references to chapters 1 to 3 of novel A can be made using ko 1, ko 2 and ko 3. According to the above, user E (reader) can browse Chapters 1 to 3 of novel A.

  Next, user D (publisher) sets ko 6, ko 2, ko 10 and ko 20 as the access right to the contents for the serialized magazine, and ko 2, ko 10 and ko 20 Set as additional content. On the other hand, the comic B which is the content of the user B (writer) and the comic C which is the content of the user C (writer) are stored in the server 3. Then, reference 10 of comic B requires co 10 and reference of comic C requires co 20. Here, user F (reader) purchases co 6. Then, Ko 2, Ko 10 and Ko 20 are additional contents of Ko 6 and can be browsed. In addition, reference to chapter 1 of novel A can be made with Co 2, comic B with reference to Co 10, and comic C with reference to Co 20. According to the above, the user F (reader) can browse Chapter 1 of the novel A, the comic B, and the comic C.

  As a variation, the publisher is the information provider and the seller of the access rights to the content, the display settings created by the designer, the document data produced by the writer, and the image data created by the illustrator, respectively. Data can be stored in the server from the environment, and publishers can edit and place data, set access rights, and set price allocation ratios, so that data can be stored, edited, and profits can be shared. it can. In this case, it is desirable to output a transaction history for facilitating entry of journal entries in the accounting book.

According to the embodiment described above, instead of the publisher setting the access right to the content (including the access right to the additional content) for each publication, the reader purchases the access right to the content (instead of passing the points). ), It is possible to browse publications that can be referred to with the access right to the content (including the access right to the additional content). The publisher of the publication can receive points from the publisher according to the purchase status of the publication. According to this, the publisher can provide services according to various readers by freely setting the access right to the content of the publication and the point which is the price.
As an example, publishers and writers set access rights to the same content for publications of the same type or preference, so that if a reader purchases access rights to the content, the publication, for example, sports Magazines can be browsed together.

  As mentioned above, although the form for implementing this invention was demonstrated, the said embodiment is for making an understanding of this invention easy, and is not for limiting and interpreting this invention. The present invention can be changed and improved without departing from the gist thereof, and equivalents thereof are also included in the present invention.

DESCRIPTION OF SYMBOLS 1 User terminal which a user uses 2 Internet 3 Server or server group 4 Web server 5 Content data management system 6 Storage device 51 Content data management program 52 Content data display program 53 Login management program 54 Accessability determination program 55 Additional content management Program 56 Access permission management program 57 Price settlement processing program D1 User information D2 Content information D3 Access permission information D4 Additional content information D5 Session information WS Web system

Claims (8)

A content data management apparatus capable of communicating with a user terminal used by a user of content data and managing content data accessed by the user terminal,
A storage unit and a processing unit;
The storage unit
User information including a user ID for identifying the user;
Content information including content data and a content ID for identifying the content data;
Access permission information including a user ID of the user and a content ID of content data accessible by the user;
Remember
The processor is
User identification means for identifying the user ID of the user of the user terminal that has referred to the user information and has transmitted a request to access the content data;
A content specifying unit that refers to the content information and specifies a content ID of the content data requested to be accessed;
Whether the user can access the content data based on the user ID specified by the user specifying means, the content ID specified by the content specifying means, and the access permission information. Access permission determination means for determining
Content data transmission means for transmitting the content data to the user terminal when the access permission determination means determines that access is possible;
If the access permission determination means determines that access is not possible, the access permission information registration screen is transmitted to the user terminal, an access permission registration request is received from the user terminal, and the user ID is assigned to the content An access permission registration means for storing the access permission information in association with the ID;
A content data management apparatus comprising: The content data management device according to claim 1,
The content information includes a directory entry,
The content can have a tree structure,
The content information includes an inheritance flag for access determination,
The access permission determination unit determines whether or not the parent content can be accessed retroactively when inheriting the access determination of the parent content when the user accesses the content data. A content data management apparatus that determines whether access is possible based on the content ID. The content data management device according to any one of claims 1 to 2, wherein
A content display file generating means for generating a content display file that can be displayed on the user terminal based on a predetermined content data display format from the content data permitted to be accessed;
The storage unit further includes
Additional usable content information in which content ID of the content data is associated with a content ID to which access should be additionally permitted when it is determined that access to the content ID is permitted;
Remember
When it is determined that the access to the content data is possible, the access permission determination unit determines that access to the content that should additionally be permitted access is permitted based on the additional available content information. Content data management device. The content data management device according to claim 3,
The content data management apparatus, wherein the content data includes text data, image data, moving image data, application data, a style sheet, and a script. The content data management device according to any one of claims 1 to 4,
When the content information permits the content data to be used in combination with content data managed by another user who can access the content data, the content data is managed by the other user. And further includes an additional availability flag indicating that the content data can become additional content,
The content information further includes an additional content setting means for registering as a content ID to which access should be additionally permitted in the second record of the additional content for the first record in which the additional availability flag is set. A content data management apparatus. The content data management device according to any one of claims 1 to 5,
In the content information, it is possible to register an alias content having no substance of content data and to have a content ID. The content data management device according to any one of claims 1 to 6,
The content information further includes a price point required when a predetermined user registers in the access permission information, an expiration date or a payment date,
The user information further includes the price of the price possessed by the user,
When the user is registered in the access permission information, in the user information, the score corresponding to the necessary price is moved from the score possessed by the user to the score possessed by the manager of the group A content data management apparatus, further comprising price transfer means for causing the content to move. A content data management program that is communicable with a user terminal used by a user of content data and that is executed by a computer that manages content data accessed by the user terminal,
The computer
User information including a user ID for identifying the user;
Content information including content data and a content ID for identifying the content data;
Access permission information including a user ID of the user and a content ID of content data accessible by the user;
Additional usable content information in which content ID of content data whose access is restricted and content ID to which access should be additionally permitted when it is determined that access to the content ID is permitted;
Remember
A user specifying step of referring to the user information and specifying a user ID of the user of the user terminal that has transmitted the access request to the content data;
A content specifying step of referring to the content information and specifying a content ID of the content data requested to be accessed;
Whether or not the user can access the content data based on the user ID specified in the user specifying step, the content ID specified in the content specifying step, and access permission information. An access permission determination step for determining;
A content data transmission step of transmitting the content data to the user terminal when it is determined that access is possible in the access permission determination step;
When it is determined that access is impossible in the access permission determination step, the access permission application screen is transmitted to the user terminal, an access permission request is received from the user terminal, and the content ID is associated with the user ID. An access permission registration step stored in the access permission information;
A content data management program characterized by comprising:

Images