WO2016127773A1 - 更新方法及装置 - Google Patents

更新方法及装置 Download PDF

Info

Publication number
WO2016127773A1
WO2016127773A1 PCT/CN2016/071628 CN2016071628W WO2016127773A1 WO 2016127773 A1 WO2016127773 A1 WO 2016127773A1 CN 2016071628 W CN2016071628 W CN 2016071628W WO 2016127773 A1 WO2016127773 A1 WO 2016127773A1
Authority
WO
WIPO (PCT)
Prior art keywords
user
priority
man
machine command
record table
Prior art date
Application number
PCT/CN2016/071628
Other languages
English (en)
French (fr)
Inventor
余辰东
于金辉
Original Assignee
中兴通讯股份有限公司
Priority date (The priority date is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the date listed.)
Filing date
Publication date
Application filed by 中兴通讯股份有限公司 filed Critical 中兴通讯股份有限公司
Publication of WO2016127773A1 publication Critical patent/WO2016127773A1/zh

Links

Images

Classifications

    • HELECTRICITY
    • H04ELECTRIC COMMUNICATION TECHNIQUE
    • H04LTRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
    • H04L41/00Arrangements for maintenance, administration or management of data switching networks, e.g. of packet switching networks

Definitions

  • the present invention relates to the field of communications, and in particular to an update method and apparatus.
  • system devices In a multi-user system device, management and maintenance of system devices are implemented through human-machine commands and corresponding business functions are implemented on system devices.
  • the system device sets command permissions for each user separately, so that different rights users can use different commands under a certain module/interface range.
  • high user rights, manageable modules/interfaces are large, and there are many man-machine commands that can be used, including man-machine commands with a human-machine command priority equal to or lower than their user rights; low user rights,
  • the managed module/interface range is small, the man-machine command can be used less, and the man-machine command is only a subset of the high-privilege user man-machine command; at the same time, the system sets a default for the management of user and man-machine commands.
  • the administrator user has the highest authority, has the largest module/interface management scope determined by the system software and hardware design, and has the operation and management authority of all man-machine commands, which can realize the adjustment of all human-machine command priorities and the management changes of other user rights.
  • the multiple human-machine commands supported by the system device can be divided into the same human-machine command sub-module according to the same physical or logical attributes (including but not limited to modules and interfaces) of the system device, or can be implemented according to the same function of the human-machine command.
  • the command attribute is divided into the same personal machine command sub-module.
  • the same human machine command submodule may include a plurality of commands having the same attributes as described above, and query, invoke, and use the above command submodules in a certain manner in the system device.
  • the man-machine command supported by the user is static; only some of the user's own permissions are dynamically configurable, and the control of the human-machine command corresponding to the operable operation is realized by adjusting the partial rights.
  • the above method has three defects in the adjustment of user man-machine commands:
  • each privilege corresponds to a set of specific man-machine commands, and the corresponding adjustment is also for a specific man-machine command set, and the adjustment of a specific single or several man-machine command privilege cannot be realized.
  • a certain type of privileged user has all the rights of the same module or interface with the same logical attribute, and cannot implement the actual physical node (including but not limited to the actual network side interface, user side interface, internal interface). Fine-grained classification control.
  • the embodiment of the invention provides an updating method and device to solve at least the problem of dynamic updating of human machine commands and user rights of a multi-user system device in the related art.
  • an update processing method including: detecting a change message of a user right of a system device and/or a change of a priority of a human machine command; and a pre-generated user according to the change message
  • the permission record table and/or the human machine command priority record table are updated.
  • the detecting that the change of the user authority of the system device is changed includes: receiving a creation request for creating a user, wherein the creation request includes a user authority generated for the user; and/or Receiving a delete request of the delete user, where the delete request includes a user right for deleting the user.
  • detecting the change message that the priority of the human machine command of the system device is changed includes: receiving an adjustment request message for adjusting a priority of a single human machine command; or receiving a plurality of human machine commands The adjustment request message whose priority is adjusted.
  • the detecting that the change of the priority of the man-machine command of the system device is changed includes: when the single or multiple man-machine commands are invalid, receiving the priority of the man-machine command to be adjusted An adjustment request of a highest priority among the priority levels of the system device; and/or receiving an adjustment request that lowers the priority of the human machine command.
  • the method further includes: validating the updated user rights by: The record table and/or the man-machine command priority record table is valid: the current user whose user rights change in the user rights record table is deleted.
  • the method further includes: receiving a query for querying or operating the man-machine command Or operating a request message; determining, according to the query or operation request message, whether the user right is greater than or equal to a priority of a human machine command to be queried or operated; and if the determination result is yes, determining that the user is The man-machine command performs a query or operation; and/or, if the judgment result is no, the user is denied to query or operate the man-machine command, and the alarm or notification information is fed back.
  • the user authority record table includes: a user name, a password, a display priority, an operation priority, and a module/interface index authority of the user;
  • the human machine command priority includes: a human-machine command identifier, and a default priority Level, specify the priority, the interface/module to which the man-machine command belongs.
  • an update processing apparatus comprising: a detection module configured to detect a change message of a user right of a system device and/or a change of a priority of a human machine command; an update module, setting The pre-generated user authority record table and/or the man machine command priority record table are updated according to the change message.
  • the detecting module includes: a first receiving unit configured to receive a creation request for creating a user, wherein the creation request includes a user right generated for the user; and/or a second receiving unit And being configured to receive a delete request of the delete user, where the delete request includes a user right for deleting the user.
  • the detecting module includes: a third receiving unit configured to receive an adjustment request message for adjusting a priority of the single man-machine command; or a fourth receiving unit configured to receive a priority for the plurality of man-machine commands Level adjustment request message for adjustment.
  • the device further includes: an effective module, configured to: the user authority record record table and/or the man-machine command priority record table validated by the following manner is valid: the logout module is set to log off the user The current user whose user rights have changed in the permission record table.
  • the device further includes: a receiving module, configured to receive a query or an operation request message for querying or operating the man-machine command; and the determining module is configured to determine, according to the query or the operation request message, whether the user authority is greater than Or equal to the priority of the man-machine command to be queried or operated; the determining module is configured to determine, in the case of the determination result being YES, the user to query or operate the man-machine command; and/or, reject the module, If the judgment result is negative, the user is denied to query or operate the man-machine command, and the alarm or notification information is fed back.
  • a receiving module configured to receive a query or an operation request message for querying or operating the man-machine command
  • the determining module is configured to determine, according to the query or the operation request message, whether the user authority is greater than Or equal to the priority of the man-machine command to be queried or operated
  • the determining module is configured to determine, in the case of the determination result being YES, the user to query
  • a change message is detected that detects that the user authority of the system device and/or the priority of the human-machine command is changed; and the pre-generated user authority record table and/or the man-machine command priority record are recorded according to the change message.
  • the table is updated to solve the update of man-machine commands and user rights of multi-user system devices in related technologies.
  • the existing problem enables flexible updating of human-machine commands and user rights, thereby improving the user experience.
  • FIG. 1 is a flow chart of an update processing method according to an embodiment of the present invention.
  • FIG. 2 is a block diagram of an update processing apparatus according to an embodiment of the present invention.
  • FIG. 3 is a block diagram 1 of an update processing apparatus in accordance with a preferred embodiment of the present invention.
  • FIG. 4 is a block diagram 2 of an update processing apparatus in accordance with a preferred embodiment of the present invention.
  • FIG. 5 is a block diagram 3 of an update processing apparatus in accordance with a preferred embodiment of the present invention.
  • FIG. 6 is a block diagram 4 of an update processing apparatus in accordance with a preferred embodiment of the present invention.
  • FIG. 7 is a flow chart of user rights and man machine command updates in a system device in accordance with an embodiment of the present invention.
  • FIG. 1 is a flowchart of an update processing method according to an embodiment of the present invention. As shown in FIG. 1, the flow includes the following steps:
  • Step S102 detecting a change message of a user right of the system device and/or a change of the priority of the man-machine command;
  • Step S104 updating the pre-generated user authority record table and/or the man-machine command priority record table according to the change message.
  • a change message of the user authority of the system device and/or the change of the priority of the man-machine command is detected; and the pre-generated user authority record table and/or the man-machine command priority record table is updated according to the change message.
  • the invention solves the problems in the related art for updating the man-machine command and the user authority of the multi-user system device, so that the man-machine command and the user authority can be flexibly updated, and the user experience is improved.
  • the creation request for creating a user is received by using the creation request.
  • the request includes a user right generated for the user; and a delete request for deleting the user is received, wherein the delete request includes a user right for deleting the user; receiving a change to the user module/interface index, displaying the priority Changes, changes in operational priorities, etc.
  • the adjustment request message for adjusting the priority of the single human machine command is received, or the adjustment request message for adjusting the priority of the plurality of human machine commands is received. For example, in the case that a single or multiple man-machine commands are invalid, receiving an adjustment request that adjusts the priority of the man-machine command to the highest priority among the priority levels of the system device; and/or, receiving the reduction The request for adjustment of the priority of the man-machine command.
  • the updated user rights record table and/or the man-machine command priority is validated by the following manner
  • the level record table takes effect: the current user whose user rights have changed in the user rights record table is logged out.
  • the pre-generated user authority record table and/or the man-machine command priority record table After updating the pre-generated user authority record table and/or the man-machine command priority record table according to the update request message, receiving a query or operation request message for querying or operating the man-machine command; according to the query or The operation request message determines whether the user authority is greater than or equal to the priority of the man-machine command to be queried or operated; if the determination result is yes, determining that the user queries or operates the man-machine command; and/or, If the determination result is no, the user is denied to query or operate the man-machine command, and the alarm or notification information is fed back.
  • the user permission record table may include: a user name, a password, a display priority, an operation priority, and a module/interface index authority;
  • the human-machine command priority may include: a human-machine command identifier, a default priority, Specifies the priority, the interface/module to which the HMI command belongs.
  • the embodiment of the present invention further provides an update processing device, which is used to implement the foregoing embodiments and preferred embodiments, and has not been described again.
  • the term "module” may implement a combination of software and/or hardware of a predetermined function.
  • the apparatus described in the following embodiments is preferably implemented in software, hardware, or a combination of software and hardware, is also possible and contemplated.
  • FIG. 2 is a block diagram of an update processing apparatus according to an embodiment of the present invention. As shown in FIG. 2, the method includes:
  • the detecting module 22 is configured to detect a change message of a user right of the system device and/or a change of the priority of the man-machine command;
  • the update module 24 is configured to update the pre-generated user rights record table and/or the man machine command priority record table based on the change message.
  • FIG. 3 is a block diagram 1 of an update processing apparatus according to a preferred embodiment of the present invention.
  • the detection module 22 includes:
  • the first receiving unit 32 is configured to receive a creation request for creating a user, where the creation request includes user rights generated for the user; and/or,
  • the second receiving unit 34 is configured to receive a delete request of the deleted user, where the delete request includes a user right for deleting the user.
  • the detection module 22 includes:
  • the third receiving unit 42 is configured to receive an adjustment request message for adjusting the priority of the single man-machine command.
  • the fourth receiving unit 44 is configured to receive an adjustment request message for adjusting priorities of the plurality of human machine commands.
  • FIG. 5 is a block diagram 3 of an update processing apparatus according to a preferred embodiment of the present invention. As shown in FIG. 5, the apparatus further includes:
  • the validation module 52 is configured to validate the updated user permission record table and/or the human machine command priority record table by the following methods:
  • the logout module 54 is configured to log out the current user whose user rights have changed in the user rights record table.
  • FIG. 6 is a block diagram 4 of an update processing apparatus according to a preferred embodiment of the present invention. As shown in FIG. 6, the apparatus further includes:
  • the receiving module 62 is configured to receive a query or operation request message for querying or operating the human machine command
  • the determining module 64 is configured to determine, according to the query or the operation request message, whether the user right is greater than or equal to a priority of the man-machine command to be queried or operated;
  • the determining module 66 is configured to determine, in the case that the determination result is yes, the user to query or operate the man-machine command; and/or,
  • the rejecting module 68 is configured to, in the case that the determination result is negative, reject the user to query or operate the human-machine command, and feed back an alarm or notification information.
  • each of the above modules may be implemented by software or hardware.
  • the foregoing modules may be implemented by, but not limited to, the foregoing modules are located in different processors in any combination, for example, each of the foregoing. Modules are all located in the same processor; or each of the above modules is located in a different processor.
  • FIG. 7 is a flow chart of updating user rights and man-machine commands in a system device according to an embodiment of the present invention, as shown in FIG. As shown in 7, it includes the following steps:
  • Step S702 when the system device starts, the user authority record table and the man-machine command priority record table are generated and maintained.
  • the user rights record table contains multiple user attributes (including but not limited to username, password, display priority, operation priority, and module/interface index, etc.).
  • the user rights record table contains one administrator right by default.
  • the administrator user has the highest priority, has all module/interface operation rights, and has display/operation rights and priority modification rights for all man-machine commands, and can be created by this user.
  • /delete/modify the general user and the corresponding priority and module/interface index the ordinary user only has the man-machine command operation permission defined by the priority authority, and only has the permission within the scope of the module/interface configured by the administrator, and cannot Create/delete/modify other users.
  • the module/interface range is represented by the module/interface index in the user rights record table.
  • all fields are 1, the module has all module/index permissions; or different modules/indexes are represented according to certain algorithms, and different algorithms are determined according to the algorithm.
  • Module/interface permissions are examples of modules/indexes.
  • User privilege priority includes display priority and operation priority: display priority is higher than or equal to operation priority; users with specified display priority can query all human-machine commands equal to or lower than the priority; Level users can execute all human-machine commands equal to or lower than this priority.
  • the man-machine command priority record table includes all man-machine commands and multiple sub-module attributes corresponding to each man-machine command (including but not limited to man-machine command ID, default priority, specified priority, associated interface, belonging module, etc.). All human-machine commands in the system device have their default priorities.
  • the system device can change the priority of the human-machine commands or restore the default priority through administrator rights.
  • the system device is given a complete set of system device modules/interface indexes for all human machine commands by default according to the hardware and software design.
  • Step S704 when a new user is created, the user priority is specified, and the module/interface index is assigned.
  • the user priority and the module/interface index are read, and the configured device authority record table is maintained by the system device based on the administrator authority.
  • the man-machine command When the logged-in user uses the man-machine command, first compare the user module/interface index with the man-machine command module/interface attribute to confirm whether the logged-in user has the operation authority for the module/interface; secondly, the priority corresponding to the man-machine command priority Relationship, when the man-machine command specifies the priority equal to or lower than the current login user operation priority, the man-machine command is visible and configurable to the user; when the man-machine command specifies the priority is equal or lower than the current login user display priority However, when the priority of the current user operation is higher, the man-machine command is visible to the user but not configurable; when the priority of the man-machine command is higher than the priority displayed by the currently logged-in user, the man-machine command is invisible and gives an error.
  • the user priority is re-read through the user permission record table. Therefore, when the user queries or executes the man-machine command, the module/interface index relationship and the prior relationship are compared, and the corresponding operation authority or related prompt is obtained.
  • Step S706 the single man-machine command priority adjustment.
  • the priority of the command is raised to the highest according to the man-machine command, network management or other operation and maintenance platform of the administrator authority, that is, only Administrator rights Users can query and use this command. Other normal users cannot query and use this command.
  • the priority adjustment of the man-machine command can be effected in real time by a certain method.
  • the modification method includes but is not limited to: modifying the corresponding man-machine command priority record table, and the modified man-machine command priority record table is manually loaded and takes effect; Manually adjust the priority of a single man-machine command and take effect after activation; restore the default priority and clear the priority of the specified man-machine command configured manually.
  • Step S708 the man-machine command priority batch adjustment.
  • the system device retrieves the specified module/interface or other common attribute according to the human-machine command priority record table based on the administrator authority, and performs priority batch modification on the relevant human-machine command that satisfies the specified module/interface/same attribute.
  • the priority of the man-machine command sub-module is adjusted in real time by a certain method.
  • the modification method includes but is not limited to: modifying the priority of the human-machine command set that meets the retrieval requirements in the corresponding human-machine command priority record table, and passing the configuration file.
  • the method of loading the human-machine command priority record table takes effect on all the human-machine command priorities in the set; manually modifying the relevant human-machine command priority and then loading the configuration file takes effect; restoring the default priority of the human-machine command set, and clearing the artificial The specified human machine command priority configured.
  • step S710 the system device maintains the man-machine command priority record table based on the administrator authority.
  • the system device maintains the priority of the man-machine command according to the man-machine command of the administrator authority, the network management system, or other operation and maintenance platform.
  • the maintenance of the man-machine command priority record table includes the promotion of the man-machine command/set priority and the lowering of the specified priority. And restore the default priority.
  • the application takes effect in a certain way. The method is not limited to: the related user takes effect after re-login; after the priority record table changes, the current user is actively logged off and a prompt is given.
  • Step S712 the user module/interface index is adjusted.
  • the administrator authority user maintains the user in the current user permission record table, and adds/decreases/changes the corresponding interface index for the common user according to a certain policy. .
  • the administrator user owns the default module/interface index of the system device, that is, the administrator user has the management authority for all modules/interfaces of the system; the ordinary user has a specific subset of all modules/interfaces of the system under the operation of the administrator user, and
  • the specific object is represented by the module/interface index in its user permission list, that is, the normal user has the configuration or query permission of the module/interface corresponding to its configuration module/interface index.
  • Step S714 the user queries the man-machine command, and the priority is compared.
  • Machine command specifies priority: high priority command is hidden The hidden, equal or low priority commands are displayed normally.
  • the system device specifies the priority of the display priority of the user right and the man-machine command in the related set.
  • the hidden display is not displayed; when the man-machine command specifies that the priority is equal to or lower than the user display priority permission, it is normally displayed; when the man-machine command or man-machine command When the command set priority changes, it should be updated and effective in a certain way.
  • Step S716 the user executes the man-machine command, and the priority is compared.
  • User operation priority High priority commands return failure, and equal or low priority commands are executed normally.
  • the system device assigns a priority to the user operation priority authority and the man-machine command in the related set.
  • the error message is prompted, and the relevant man-machine command is not directly returned; when the priority of the man-machine command is equal to or lower than the user operation authority, the relevant man-machine command is invoked. carried out.
  • Step S718, deleting the user and updating the user record table Query whether the user logs in and log out the user according to a certain method, including directly logging out the user, or giving a prompt and waiting for the user to log out. After the user logs out, the user permission table is updated, the user and its related attributes are deleted from the user permission record table, and the method takes effect according to a certain method.
  • the change of the user account authority can only implement the change of the command set corresponding to the specific priority, and the minority specified command cannot be implemented between different levels of the user account.
  • Flexible adjustment can not solve the problem of the opening and disabling of a few commands to all ordinary users (non-administrator users) and the dynamic adaptation of users to module/interface changes.
  • the solution to the above problems in the traditional solution can only be achieved by changing the software version.
  • the priority configuration and update of the human-machine command are implemented, and the authority and module/interface index of the corresponding level user are flexibly corresponding to each other, and can be dynamically updated without changing the version, and implemented in a certain manner.
  • Load online The program does not require changes and redesigns of the software version, the implementation is simple and flexible, and the cost is the lowest, and adapts to the trend of subsequent network development.
  • modules or steps of the present invention described above can be implemented by a general-purpose computing device that can be centralized on a single computing device or distributed across a network of multiple computing devices. Alternatively, they may be implemented by program code executable by the computing device such that they may be stored in the storage device by the computing device and, in some cases, may be different from the order herein.
  • the steps shown or described are performed, or they are separately fabricated into individual integrated circuit modules, or a plurality of modules or steps thereof are fabricated as a single integrated circuit module.
  • the invention is not limited to any specific combination of hardware and software.
  • the foregoing embodiments of the present invention can be applied to the field of communications, and solve the problem that the human-machine command and the user authority of the multi-user system device are updated in the related art, so that the man-machine command and the user authority can be flexibly updated, and the user authority is improved. user experience.

Landscapes

  • Engineering & Computer Science (AREA)
  • Computer Networks & Wireless Communication (AREA)
  • Signal Processing (AREA)
  • Selective Calling Equipment (AREA)
  • User Interface Of Digital Computer (AREA)

Abstract

本发明公开了一种更新方法及装置,其中,该方法包括:检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;根据该变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新。通过本发明,解决了相关技术中对多用户系统设备的人机命令与用户权限的更新存在的问题,使得能够灵活的更新人机命令与用户权限,提高了用户体验。

Description

更新方法及装置 技术领域
本发明涉及通信领域,具体而言,涉及一种更新方法及装置。
背景技术
在多用户系统设备中,通过人机命令实现对系统设备的管理维护并在系统设备上实现相应的业务功能。系统设备分别为每个用户设置命令权限,使得不同权限用户可以在一定的模块/接口范围下使用的命令不同。一般而言,高用户权限,可管理的模块/接口范围较大,可使用的人机命令较多,包括人机命令优先级等于及低于其用户权限的人机命令;低用户权限,可管理的模块/接口范围较小,可使用人机命令较少,人机命令仅为高权限用户人机命令的一个子集;同时系统为实现对用户与人机命令的管理,设置一个默认的管理员用户,拥有最高权限,拥有系统软硬件设计决定的最大模块/接口管理范围,拥有所有人机命令的操作管理权限,可实现所有人机命令优先级的调整以及其他用户权限的管理变更。
系统设备支持的多条人机命令可根据系统设备相同物理或逻辑属性(包括但不限于模块、接口)划分为相同的人机命令子模块,也可以根据人机命令相同的功能、实现业务种类、命令属性划分为同一个人机命令子模块。同一人机命令子模块中可包含多条具备上述相同属性的命令,并在系统设备中通过一定方式查询、调用并使用上述命令子模块。
在传统多用户系统设备中,其支持的人机命令本身是静态的;用户本身仅有部分权限是动态可配置的,通过调整此部分权限的方式实现对应可操作使用的人机命令的控制。但上述方法对用户人机命令的调整存在三个缺陷:
1)每个权限的用户对应特定人机命令的集合,对应的调整也是针对特定人机命令集合,无法实现对特定的单条或几条人机命令权限的调整。
2)无法满足人机命令自身变化(包括不限于人机命令使用场景、应用模式、命令实现方式等)导致相应命令对所有一般用户开放或禁止的要求。
3)用户不能适应系统模块/接口的动态变化,某类权限用户拥有逻辑属性相同模块或接口的全部权限,无法实现对实际物理节点(包括但不限于实际网络侧接口、用户侧接口、内部接口)的精细化分类控制。
上述问题在实际应用中,往往需要系统设备通过构造新版本以重新设计用户权限 对应的人机命令集合,通过不同人机命令集合的调整,满足单条或几条人机命令权限变化的要求,并且通过废止或开放指定人机命令方式实现对人机命令自身变化的修改;且无法实现对系统模块/接口变化带来的动态管理需求。传统方法成本高,且实现周期长,无法满足实际应用中实时动态修改指定人机命令。
在当前网络飞速发展,业务应用与运维模式发展日新月异的情况下,上述问题在现网应用中会进一步加剧,且变得更为迫切,并进一步的要求多用户系统设备的人机命令与用户权限适应上述变化。
针对相关技术中对多用户系统设备的人机命令与用户权限的更新存在的问题,目前尚未提出有效的解决方案。
发明内容
本发明实施例提供了一种更新方法及装置,以至少解决相关技术中对多用户系统设备的人机命令与用户权限的动态更新存在的问题。
根据本发明实施例的一个方面,提供了一种更新处理方法,包括:检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;根据所述变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新。
进一步地,检测到所述系统设备的所述用户权限发生变更的变更消息包括:接收到用于创建用户的创建请求,其中,所述创建请求包括为所述用户生成的用户权限;和/或,接收到删除用户的删除请求,其中,所述删除请求中包括用于删除所述用户生成的用户权限。
进一步地,检测到所述系统设备的所述人机命令优先级发生变更的变更消息包括:接收对单条人机命令的优先级进行调整的调整请求消息;或者,接收对多条人机命令的优先级进行调整的调整请求消息。
进一步地,检测到所述系统设备的所述人机命令优先级发生变更的变更消息包括:在单条或多条人机命令失效的情况下,接收将所述人机命令的优先级调整为所述系统设备的优先级等级中的最高优先级的调整请求;和/或,接收降低所述人机命令的优先级的调整请求。
进一步地,在根据所述更新请求消息对预先生成的所述用户权限记录表和/或所述人机命令优先级记录表进行更新之后,还包括:通过以下方式生效更新后的所述用户权限记录表和/或所述人机命令优先级记录表生效:注销所述用户权限记录表中用户权限发生变更的当前用户。
进一步地,在根据所述更新请求消息对预先生成的所述用户权限记录表和/或所述人机命令优先级记录表进行更新之后,还包括:接收对人机命令进行查询或操作的查询或操作请求消息;根据所述查询或操作请求消息判断所述用户权限是否大于或等于待查询或操作的人机命令的优先级;在判断结果为是的情况下,确定所述用户对所述人机命令进行查询或操作;和/或,在判断结果为否的情况下,拒绝所述用户对所述人机命令进行查询或操作,并反馈告警或通知信息。
进一步地,所述用户权限记录表包括:所述用户的用户名、密码,显示优先级,操作优先级以及模块/接口索引权限;所述人机命令优先级包括:人机命令标识,默认优先级,指定优先级,人机命令所属接口/模块。
根据本发明实施例的另一方面,提供了一种更新处理装置,包括:检测模块,设置为检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;更新模块,设置为根据所述变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新。
进一步地,所述检测模块包括:第一接收单元,设置为接收到用于创建用户的创建请求,其中,所述创建请求包括为所述用户生成的用户权限;和/或,第二接收单元,设置为接收到删除用户的删除请求,其中,所述删除请求中包括用于删除所述用户生成的用户权限。
进一步地,所述检测模块包括:第三接收单元,设置为接收对单条人机命令的优先级进行调整的调整请求消息;或者,第四接收单元,设置为接收对多条人机命令的优先级进行调整的调整请求消息。
进一步地,所述装置还包括:生效模块,设置为通过以下方式生效更新后的所述用户权限记录表和/或所述人机命令优先级记录表生效:注销模块,设置为注销所述用户权限记录表中用户权限发生变更的当前用户。
进一步地,所述装置还包括:接收模块,设置为接收对人机命令进行查询或操作的查询或操作请求消息;判断模块,设置为根据所述查询或操作请求消息判断所述用户权限是否大于或等于待查询或操作的人机命令的优先级;确定模块,设置为在判断结果为是的情况下,确定所述用户对所述人机命令进行查询或操作;和/或,拒绝模块,设置为在判断结果为否的情况下,拒绝所述用户对所述人机命令进行查询或操作,并反馈告警或通知信息。
通过本发明实施例,采用检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;根据所述变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新,解决了相关技术中对多用户系统设备的人机命令与用户权限的更新 存在的问题,使得能够灵活的更新人机命令与用户权限,提高了用户体验。
附图说明
此处所说明的附图用来提供对本发明的进一步理解,构成本申请的一部分,本发明的示意性实施例及其说明用于解释本发明,并不构成对本发明的不当限定。在附图中:
图1是根据本发明实施例的更新处理方法的流程图;
图2是根据本发明实施例的更新处理装置的框图;
图3是根据本发明优选实施例的更新处理装置的框图一;
图4是根据本发明优选实施例的更新处理装置的框图二;
图5是根据本发明优选实施例的更新处理装置的框图三;
图6是根据本发明优选实施例的更新处理装置的框图四;
图7是根据本发明实施例的系统设备中用户权限与人机命令更新的流程图。
具体实施方式
下文中将参考附图并结合实施例来详细说明本发明。需要说明的是,在不冲突的情况下,本申请中的实施例及实施例中的特征可以相互组合。
在本实施例中提供了一种更新处理方法,图1是根据本发明实施例的更新处理方法的流程图,如图1所示,该流程包括如下步骤:
步骤S102,检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;
步骤S104,根据该变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新。
通过上述步骤,检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;根据该变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新。通过本发明,解决了相关技术中对多用户系统设备的人机命令与用户权限的更新存在的问题,使得能够灵活的更新人机命令与用户权限,提高了用户体验。
检测到该系统设备的该用户权限发生变更的变更消息的方式有多种,在一个可选的实施例中,可以通过以下方式实现,接收到用于创建用户的创建请求,其中,该创 建请求包括为该用户生成的用户权限;接收到删除用户的删除请求,其中,该删除请求中包括用于删除该用户生成的用户权限;接收到对用户模块/接口索引的变更,显示优先级的变更,操作优先级的变更等等。
在另一个可选的实施例中,通过以下方式实现,接收对单条人机命令的优先级进行调整的调整请求消息;或者,接收对多条人机命令的优先级进行调整的调整请求消息。例如,在单条或多条人机命令失效的情况下,接收将该人机命令的优先级调整为该系统设备的优先级等级中的最高优先级的调整请求;和/或,接收降低所述人机命令的优先级的调整请求。
在根据该更新请求消息对预先生成的该用户权限记录表和/或该人机命令优先级记录表进行更新之后,通过以下方式生效更新后的该用户权限记录表和/或该人机命令优先级记录表生效:注销该用户权限记录表中用户权限发生变更的当前用户。
在根据该更新请求消息对预先生成的该用户权限记录表和/或该人机命令优先级记录表进行更新之后,接收对人机命令进行查询或操作的查询或操作请求消息;根据该查询或操作请求消息判断该用户权限是否大于或等于待查询或操作的人机命令的优先级;在判断结果为是的情况下,确定该用户对该人机命令进行查询或操作;和/或,在判断结果为否的情况下,拒绝所述用户对所述人机命令进行查询或操作,并反馈告警或通知信息。
上述的用户权限记录表可以包括:该用户的用户名、密码,显示优先级,操作优先级以及模块/接口索引权限;上述的人机命令优先级可以包括:人机命令标识,默认优先级,指定优先级,人机命令所属接口/模块。
本发明实施例还提供了一种更新处理装置,该装置用于实现上述实施例及优选实施方式,已经进行过说明的不再赘述。如以下所使用的,术语“模块”可以实现预定功能的软件和/或硬件的组合。尽管以下实施例所描述的装置较佳地以软件来实现,但是硬件,或者软件和硬件的组合的实现也是可能并被构想的。
图2是根据本发明实施例的更新处理装置的框图,如图2所示,包括:
检测模块22,设置为检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;
更新模块24,设置为根据该变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新。
图3是根据本发明优选实施例的更新处理装置的框图一,如图3所示,检测模块22包括:
第一接收单元32,设置为接收到用于创建用户的创建请求,其中,该创建请求包括为该用户生成的用户权限;和/或,
第二接收单元34,设置为接收到删除用户的删除请求,其中,该删除请求中包括用于删除该用户生成的用户权限。
图4是根据本发明优选实施例的更新处理装置的框图二,如图4所示,检测模块22包括:
第三接收单元42,设置为接收对单条人机命令的优先级进行调整的调整请求消息;或者,
第四接收单元44,设置为接收对多条人机命令的优先级进行调整的调整请求消息。
图5是根据本发明优选实施例的更新处理装置的框图三,如图5所示,该装置还包括:
生效模块52,设置为通过以下方式生效更新后的该用户权限记录表和/或该人机命令优先级记录表生效:
注销模块54,设置为注销该用户权限记录表中用户权限发生变更的当前用户。
图6是根据本发明优选实施例的更新处理装置的框图四,如图6所示,该装置还包括:
接收模块62,设置为接收对人机命令进行查询或操作的查询或操作请求消息;
判断模块64,设置为根据该查询或操作请求消息判断该用户权限是否大于或等于待查询或操作的人机命令的优先级;
确定模块66,设置为在判断结果为是的情况下,确定该用户对该人机命令进行查询或操作;和/或,
拒绝模块68,设置为在判断结果为否的情况下,拒绝所述用户对所述人机命令进行查询或操作,并反馈告警或通知信息。
需要说明的是,上述的各个模块可以通过软件或硬件实现,对于后者,可以通过以下方式实现,但不限于此,上述各个模块以任意组合的方式位于不同的处理器中,例如,上述各个模块均位于同一处理器中;或者上述的各个模块分别位于不同的处理器中。
下面结合可选实施例对本发明实施例进行进一步说明。
图7是根据本发明实施例的系统设备中用户权限与人机命令更新的流程图,如图 7所示,包括如下步骤:
步骤S702,系统设备启动时生成并维护用户权限记录表与人机命令优先级记录表。
用户权限记录表包含多个用户属性(包括但不限于用户名、密码、显示优先级、操作优先级以及模块/接口索引等)。用户权限记录表默认包含一个管理员权限,管理员用户具有最高优先级、拥有所有模块/接口操作权限,并具备所有人机命令的显示/操作权限以及优先级修改权限,且可通过该用户创建/删除/修改一般普通用户以及相应的优先级与模块/接口索引;普通用户只具备其优先级权限限定的人机命令操作权限,只拥有管理员配置的模块/接口范围内的权限,且无法对其他用户进行创建/删除/修改。模块/接口范围通过用户权限记录表中的模块/接口索引表示。
上述的模块/接口索引根据系统设计可以采用字段或其他方式,包括但不限于:根据系统设计最大能力分配对应字段,字段不同字节直接表示不同的模块/索引,字节=1时表示具备该模块/索引权限,字节=0时表示不具备该模块/索引权限,该字段全1时表示拥有全部模块/索引权限;或根据一定算法分别表示不同的模块/索引,并根据算法确定不同的模块/接口权限。
用户权限优先级包括显示优先级与操作优先级:显示优先级高于或等于操作优先级;拥有指定显示优先的用户,可以查询所有等于与低于该优先级的人机命令;拥有指定操作优先级的用户,可以执行所有等于与低于该优先级的人机命令。
人机命令优先级记录表包含所有人机命令以及每条人机命令对应的多个子模块属性(包括但不限于人机命令标识、默认优先级、指定优先级、所属接口、所属模块等)。系统设备中所有人机命令分别具有其默认优先级,系统设备可通过管理员权限对人机命令的优先级进行变动或恢复默认优先级。系统设备根据软硬件设计,为所有人机命令默认赋予该系统设备模块/接口索引的全集。
步骤S704,当创建新用户时,指定该用户优先级,分配模块/接口索引。当用户登录时,读取该用户优先级与模块/接口索引,并由系统设备基于管理员权限对已配置用户权限记录表进行维护。当登录用户使用人机命令时,首先比对用户模块/接口索引与人机命令模块/接口属性,确认登录用户是否有对此模块/接口操作权限;其次比对二者人机命令优先级对应关系,当人机命令指定优先级等同或低于当前登录用户操作优先级时,则人机命令对此用户可见并可配置;当人机命令指定优先级等同或低于当前登录用户显示优先级,但高于当前用户操作优先级时,则人机命令对此用户可见但不可配置;当人机命令优先级高于当前登录用户显示优先级时,则人机命令不可见,并给出错误提示。当用户退出并重新登录后,通过用户权限记录表重新读取该用户优先级 与模块/接口所以,并在该用户查询或执行人机命令时,比对二者模块/接口索引关系以及先级关系,并获取相应操作权限或给出相关提示。
步骤S706,单条人机命令优先级调整。当人机命令不再满足系统设备需要或由于其他原因要求不再被一般用户使用时,根据管理员权限的人机命令、网管或其他运维平台将该命令优先级升为最高,也即只有管理员权限用户可以查询使用并维护该命令,其他一般普通用户无法查询并使用该命令。人机命令的优先级调整,可以通过一定方法实时生效,修改方法包括但不限于:修改其对应人机命令优先级记录表,并将修改后的人机命令优先级记录表手工加载后生效;手工调整单条人机命令优先级并激活后生效;恢复默认优先级,清除人为配置的指定人机命令优先级。
步骤S708,人机命令优先级批量调整。系统设备基于管理员权限根据人机命令优先级记录表检索指定的模块/接口或其他共同属性,对满足指定模块/接口/相同属性的相关人机命令进行优先级批量修改。人机命令子模块优先级批量调整,可以通过一定方法实时生效,修改方法包括但不限于:修改对应人机命令优先级记录表中满足检索要求的人机命令集合优先级属性,并通过配置文件方式加载人机命令优先级记录表实现对集合中所有人机命令优先级生效;手工逐条修改相关人机命令优先级后通过加载配置文件方式生效;恢复人机命令集合的默认优先级,清除人为配置的指定人机命令优先级。
步骤S710,系统设备基于管理员权限对人机命令优先级记录表进行维护。系统设备根据管理员权限的人机命令、网管或其他运维平台对人机命令优先级进行维护,人机命令优先级记录表维护包括对人机命令/集合优先级的提升、降低指定优先级以及恢复默认优先级。人机命令优先级记录表更新后按一定方式应用生效,方法包括不限于:相关用户重新登录后生效;优先级记录表发生变化后主动注销当前用户,并给出提示。
步骤S712,用户模块/接口索引调整。当系统设备模块/接口发生变化时(增加/删减/变动),管理员权限用户对当前用户权限记录表中的用户进行维护,根据一定策略为普通用户增加/删减/变动相应的接口索引。
管理员用户拥有该系统设备默认模块/接口索引全集,即管理员用户拥有对该系统所有模块/接口的管理权限;普通用户在管理员用户操作下拥有系统全部模块/接口的特定子集,并在其用户权限列表中通过模块/接口索引表征具体对象,即普通用户拥有其配置模块/接口索引对应的模块/接口的配置或查询权限。
步骤S714,用户查询人机命令,优先级比对。首先查看用户模块/接口索引,确认该用户是否有对相关模块接口的查询权限,若无对应模块/接口索引,则不显示;若有对应模块/接口索引,则比对用户显示优先级与人机命令指定优先级:高优先级命令隐 藏,同等或低优先级命令正常显示。当用户通过一定方式(包括但不限于使用帮助、提示符等)查询人机命令时,系统设备比对用户权限的显示优先级与相关集合中人机命令指定优先级。当人机命令指定优先级高于用户显示优先级权限时,则隐藏不显示;当人机命令指定优先级等于或低于用户显示优先级权限时,则正常显示;当人机命令或人机命令集合优先级发生变化时,应按一定方式更新并生效。
步骤S716,用户执行人机命令,优先级比对。首先查看用户模块/接口索引,确认该用户是否有对应模块接口的配置权限,若无对应模块/接口索引,则返回失败;若有对应模块/接口索引,则比对人机命令指定优先级与用户操作优先级:高优先级命令返回失败,同等或低优先级命令正常执行。当用户直接执行人机命令时,系统设备比对用户操作优先级权限与相关集合中人机命令指定优先级。当人机命令优先级高于用户操作权限时,则提示错误信息,同时不调用相关人机命令直接返回;当人机命令优先级等于或低于用户操作权限时,则调用相关人机命令并执行。
步骤S718,删除用户,更新用户记录表。查询用户是否登录,并根据一定方式注销该用户,方式包括直接注销用户,或给出提示并等待用户注销。当用户注销后,更新用户权限表,将该用户及其相关属性从用户权限记录表中删除,并按一定方法生效。
相关技术中由于人机命令优先级实际在系统软件版本中内置,因此用户账号权限的变动只能实现对应于具体优先级的命令集合的变动,无法实现少数指定命令在不同级别用户账号之间的灵活调整。同时传统方案也无法解决少数命令对所有用普通户(非管理员用户)的开放与禁用的问题以及用户对模块/接口变化的动态适应问题。传统方案中上述问题的解决只能通过变更软件版本来实现。本可选实施例,通过人机命令优先级配置与更新,实现了与对应级别用户的权限、模块/接口索引灵活对应,并可在不变动版本的情况下动态更新,并通过一定的方式实现在线加载。该方案不要求软件版本的变动与重新设计,实现方式简单灵活,且成本最低,并适应后续网络发展的趋势。
显然,本领域的技术人员应该明白,上述的本发明的各模块或各步骤可以用通用的计算装置来实现,它们可以集中在单个的计算装置上,或者分布在多个计算装置所组成的网络上,可选地,它们可以用计算装置可执行的程序代码来实现,从而,可以将它们存储在存储装置中由计算装置来执行,并且在某些情况下,可以以不同于此处的顺序执行所示出或描述的步骤,或者将它们分别制作成各个集成电路模块,或者将它们中的多个模块或步骤制作成单个集成电路模块来实现。这样,本发明不限制于任何特定的硬件和软件结合。
以上所述仅为本发明的优选实施例而已,并不用于限制本发明,对于本领域的技术人员来说,本发明可以有各种更改和变化。凡在本发明的精神和原则之内,所作的任何修改、等同替换、改进等,均应包含在本发明的保护范围之内。
工业实用性
上述的本发明实施例,可以应用于通讯领域,解决了相关技术中对多用户系统设备的人机命令与用户权限的更新存在的问题,使得能够灵活的更新人机命令与用户权限,提高了用户体验。

Claims (12)

  1. 一种更新处理方法,包括:
    检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;
    根据所述变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新。
  2. 根据权利要求1所述的方法,其中,检测到所述系统设备的所述用户权限发生变更的变更消息包括:
    接收到用于创建用户的创建请求,其中,所述创建请求包括为所述用户生成的用户权限;和/或,
    接收到删除用户的删除请求,其中,所述删除请求中包括用于删除所述用户生成的用户权限。
  3. 根据权利要求1所述的方法,其中,检测到所述系统设备的所述人机命令优先级发生变更的变更消息包括:
    接收对单条人机命令的优先级进行调整的调整请求消息;或者,
    接收对多条人机命令的优先级进行调整的调整请求消息。
  4. 根据权利要求3所述的方法,其中,检测到所述系统设备的所述人机命令优先级发生变更的变更消息包括:
    在单条或多条人机命令失效的情况下,接收将所述人机命令的优先级调整为所述系统设备的优先级等级中的最高优先级的调整请求;和/或,
    接收降低所述人机命令的优先级的调整请求。
  5. 根据权利要求1至4中任一项所述的方法,其中,在根据所述变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新之后,还包括:
    通过以下方式生效更新后的所述用户权限记录表和/或所述人机命令优先级记录表生效:
    注销所述用户权限记录表中用户权限发生变更的当前用户。
  6. 根据权利要求1至4中任一项所述的方法,其中,在根据所述更新请求消息对预先生成的所述用户权限记录表和/或所述人机命令优先级记录表进行更新之后,还包括:
    接收对人机命令进行查询或操作的查询或操作请求消息;
    根据所述查询或操作请求消息判断所述用户权限是否大于或等于待查询或待操作的人机命令的优先级;
    在判断结果为是的情况下,确定所述用户对所述人机命令进行查询或操作;和/或,
    在判断结果为否的情况下,拒绝所述用户对所述人机命令进行查询或操作,并反馈告警或通知信息。
  7. 根据权利要求1至4中任一项所述的方法,其中,
    所述用户权限记录表包括:所述用户的用户名、密码,显示优先级,操作优先级以及模块/接口索引权限;
    所述人机命令优先级包括:人机命令标识,默认优先级,指定优先级,人机命令所属接口/模块。
  8. 一种更新处理装置,包括:
    检测模块,设置为检测到系统设备的用户权限和/或人机命令优先级发生变更的变更消息;
    更新模块,设置为根据所述变更消息对预先生成的用户权限记录表和/或人机命令优先级记录表进行更新。
  9. 根据权利要求8所述的装置,其中,所述检测模块包括:
    第一接收单元,设置为接收到用于创建用户的创建请求,其中,所述创建请求包括为所述用户生成的用户权限;和/或,
    第二接收单元,设置为接收到删除用户的删除请求,其中,所述删除请求中包括用于删除所述用户生成的用户权限。
  10. 根据权利要求8所述的装置,其中,所述检测模块包括:
    第三接收单元,设置为接收对单条人机命令的优先级进行调整的调整请求消息;或者,
    第四接收单元,设置为接收对多条人机命令的优先级进行调整的调整请求消息。
  11. 根据权利要求8至10中任一项所述的装置,其中,所述装置还包括:
    生效模块,设置为通过以下方式生效更新后的所述用户权限记录表和/或所述 人机命令优先级记录表生效:
    注销模块,设置为注销所述用户权限记录表中用户权限发生变更的当前用户。
  12. 根据权利要求8至10中任一项所述的装置,其中,所述装置还包括:
    接收模块,设置为接收对人机命令进行查询或操作的查询或操作请求消息;
    判断模块,设置为根据所述查询或操作请求消息判断所述用户权限是否大于或等于待查询或操作的人机命令的优先级;
    确定模块,设置为在判断结果为是的情况下,确定所述用户对所述人机命令进行查询或操作;和/或,
    拒绝模块,设置为在判断结果为否的情况下,拒绝所述用户对所述人机命令进行查询或操作,并反馈告警或通知信息。
PCT/CN2016/071628 2015-02-10 2016-01-21 更新方法及装置 WO2016127773A1 (zh)

Applications Claiming Priority (2)

Application Number Priority Date Filing Date Title
CN201510071032.5 2015-02-10
CN201510071032.5A CN105991327A (zh) 2015-02-10 2015-02-10 更新方法及装置

Publications (1)

Publication Number Publication Date
WO2016127773A1 true WO2016127773A1 (zh) 2016-08-18

Family

ID=56614114

Family Applications (1)

Application Number Title Priority Date Filing Date
PCT/CN2016/071628 WO2016127773A1 (zh) 2015-02-10 2016-01-21 更新方法及装置

Country Status (2)

Country Link
CN (1) CN105991327A (zh)
WO (1) WO2016127773A1 (zh)

Families Citing this family (2)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN107066877B (zh) * 2017-03-31 2019-12-31 武汉票据交易中心有限公司 一种交易系统的权限变更方法及系统
CN110008234B (zh) * 2019-04-11 2021-09-24 北京百度网讯科技有限公司 一种业务数据搜索方法、装置及电子设备

Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101887375A (zh) * 2010-06-30 2010-11-17 中兴通讯股份有限公司 一种人机命令系统的实现方法及其系统
CN101998456A (zh) * 2009-08-21 2011-03-30 中兴通讯股份有限公司 自组织网络参数配置控制方法和参数修改控制系统
CN103108363A (zh) * 2011-11-15 2013-05-15 华为技术有限公司 一种参数管理协调的方法及装置
CN103279106A (zh) * 2013-05-30 2013-09-04 莱诺斯科技(北京)有限公司 一种仪器设备监视与控制系统

Patent Citations (4)

* Cited by examiner, † Cited by third party
Publication number Priority date Publication date Assignee Title
CN101998456A (zh) * 2009-08-21 2011-03-30 中兴通讯股份有限公司 自组织网络参数配置控制方法和参数修改控制系统
CN101887375A (zh) * 2010-06-30 2010-11-17 中兴通讯股份有限公司 一种人机命令系统的实现方法及其系统
CN103108363A (zh) * 2011-11-15 2013-05-15 华为技术有限公司 一种参数管理协调的方法及装置
CN103279106A (zh) * 2013-05-30 2013-09-04 莱诺斯科技(北京)有限公司 一种仪器设备监视与控制系统

Also Published As

Publication number Publication date
CN105991327A (zh) 2016-10-05

Similar Documents

Publication Publication Date Title
US11675918B2 (en) Policy-based user device security checks
CN107046530B (zh) 用于异构敏捷信息技术环境的协调治理系统
EP2407907B1 (en) Device and method for performing role-based access control
JP5700730B2 (ja) データベース・アプリケーションの集中制御のための方法、システム、およびコンピュータ・プログラム
US8566586B2 (en) Methods and systems for network-based management of application security
US11093647B2 (en) Method and device for executing system scheduling
EP2521066A1 (en) Fine-grained relational database access-control policy enforcement using reverse queries
US20100306827A1 (en) Opaque Quarantine and Device Discovery
KR102448387B1 (ko) 스마트 디바이스들의 효율적인 제어 및/또는 연결
US9430665B2 (en) Dynamic authorization to features and data in JAVA-based enterprise applications
US8185639B2 (en) Server identification in storage networks
US10740286B1 (en) Migration task validation before data migration
US11126460B2 (en) Limiting folder and link sharing
US8725767B1 (en) Multi-dimensional object model for storage management
JP2016507839A (ja) アクセス制御のための自由形式メタデータの使用
EP2725513B1 (en) Managing permission settings applied to applications
CN107566375B (zh) 访问控制方法和装置
CN102201935B (zh) 一种基于view的访问控制方法及其装置
WO2016127773A1 (zh) 更新方法及装置
US10721236B1 (en) Method, apparatus and computer program product for providing security via user clustering
US20220060513A1 (en) Centralized request processing and security zone policy enforcement in a cloud infrastructure system
US10380367B2 (en) Dynamic access control of resources in a computing environment
US11055439B2 (en) Confirmation message determinations
US20210021600A1 (en) Context-aware content object security
CN110348184B (zh) 基于工业云的权限资源配置方法、系统和存储介质

Legal Events

Date Code Title Description
121 Ep: the epo has been informed by wipo that ep was designated in this application

Ref document number: 16748574

Country of ref document: EP

Kind code of ref document: A1

NENP Non-entry into the national phase

Ref country code: DE

122 Ep: pct application non-entry in european phase

Ref document number: 16748574

Country of ref document: EP

Kind code of ref document: A1