The fine-grained realization of role-based access control

摘要

Role-based access control is now recognized as an effective way to solve large-scale enterprises uniform resource access control, It is basically meet the security requirements of the traditional closed system, With the constant expansion of the system, the RBAC model used in traditional web application has been seriously hampered the expansion of the system and improvement of the performance in the retrieval efficiency, permissions maintenance and other aspects, and in SOA model, it was difficult to meet the authorization in the process of different nodes and systems to request services and share resources with each other. To solve the above problems, Using REST-style architecture, Based on Struts 2 interceptors to implement a fine-grained role-based access control, The implementations have good flexibility and scalability.