针对图书馆门户系统中后台管理者不同类型的用户身份,采用ASP.NET技术设计并实现了一个基于角色的权限管理系统,本系统的后台管理三类用户,游客无访问权限,管理员(角色为manage)登录后可访问mange文件夹下的页面,普通用户(角色为member)登录后可访问member文件夹夹下了文件。基于角色的访问控制模型应用于本系统后,实现了用户与访问权限的逻辑分离,借助于角色这个主体,将权限和角色相关联,通过给用户分配适当的角色以授予用户权限,这样将简化用户的权限管理,减少系统的开销。%For different types of user identity in the background manager of the portal system of library, using ASP. NET technology, this papaer designs and implements a privilege management system based on role. This background management system manages three kinds of users, visitors have no right to access, the administrator (role as manage) can access the mange folder page after loginning, ordinary users (role as member) can access the files of the member folder after logiuning. After access control model on role is applied to the system, it realizes logical separation of the user and privilege of access. With the aid of the main body of role, it will relate the user to role, so it will simplify the user's authentication management and reduce the cost of the system through appropriate role based on the distribution of user permission.
展开▼
