系统中的权限设计方法直接影响到系统的安全,为解决系统中权限控制的灵活性问题,结合柔性化软件开发策略提出了基于动态树模式的角色授权管理机制,系统管理员可以根据不同角色的需求,动态设置角色的权限.该授权方法突破了传统系统中角色不能更改的弊端,基于动态树模式的角色授权管理机制根据不同用户动态加载不同的菜单,实现了用户访问系统资源的可定制性、灵活性和可控性,解决了权限管理粒度与数量矛盾的问题.该方法具体应用于某高校信息管理系统中,实现了系统权限的灵活管理.%The privilege design method of the system directly affect the security of the system. To make the system safe and easy to maintain, a role authorization management mechanism based on dynmic tree is proposed in combination with flexibility software development strategy. The system administrators can dynamically set the role privilege acccording to the different demands of roles. The privilege method broke through the traditional system drawbacks that role can not be changed. The different menu can be uploaded dynamically for the different users according to the role authorization management mechanism based on dynmic tree to realize the customizable feature, flexibility and controllability of user access to system resources. It solved the contradiction between the role number and access management granularity. This method is specifically applied to the information management system in universities.
展开▼
