CN108961475A - A kind of gate inhibition's dispositions method and gate inhibition's deployment services device - Google Patents
A kind of gate inhibition's dispositions method and gate inhibition's deployment services device Download PDFInfo
- Publication number
- CN108961475A CN108961475A CN201710356676.8A CN201710356676A CN108961475A CN 108961475 A CN108961475 A CN 108961475A CN 201710356676 A CN201710356676 A CN 201710356676A CN 108961475 A CN108961475 A CN 108961475A
- Authority
- CN
- China
- Prior art keywords
- gate inhibition
- card
- access
- information
- access card
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Granted
Links
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/00174—Electronically operated locks; Circuits therefor; Nonmechanical keys therefor, e.g. passive or active electrical keys or other data carriers without mechanical keys
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L67/00—Network arrangements or protocols for supporting network services or applications
- H04L67/01—Protocols
- H04L67/10—Protocols in which an application is distributed across nodes in the network
Landscapes
- Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Storage Device Security (AREA)
- Time Recorders, Dirve Recorders, Access Control (AREA)
Abstract
The embodiment of the invention discloses a kind of gate inhibition's dispositions methods, comprising: receives the first access card corresponding first and holds information;When first hold information be unauthorized hold information when, hold information and preset authorization rule according to first, obtain corresponding with the first access card the first authority information;According to the first authority information, the first access point of first gate inhibition's server is determined from multiple gate inhibition's servers, and the authorization of the access permission of the first access point is realized for the first access card, the first authorization message is generated, multiple gate inhibition's servers are the management server of the access control system of the separate sources of gate inhibition's deployment services device distribution deployment;The first authorization message to first gate inhibition's server is issued, provides the access permission of first access point for first gate inhibition's server for the first access card.The embodiment of the present invention further simultaneously discloses a kind of gate inhibition's deployment services device.
Description
Technical field
The present invention relates to the distributed deployment technologies more particularly to a kind of gate inhibition's dispositions method and door in electronic application field
Prohibit deployment services device.
Background technique
With the continuous development of electronic technology, the range of enterprise's applicating technology product is also more and more, and existing enterprise is all
The management to employee can be realized using access control system, which can be by a server, multiple controllers, multiple readings
One communication network of card device and multiple access cards composition, clothes of the authorization of access card before being issued to user in access control system
By manually authorizing in advance in business device, card reader is responsible for authentication control controller and opens the door, acquisition swipe the card record be used for attendance,
Provide specific welfare etc. other function.
Existing large enterprise will necessarily have the case where cross-region more offices, as company size is expanded, access point
Also can be more and more, and present single gate inhibition service supplier is increasingly difficult to meet the growing scale of large enterprise, and
Single-point system risk is also increasing, and gate inhibition's server stress becomes larger, and breaking down influences the staff, very risky;Furthermore
Gate inhibition's provider service supports extending transversely, reduction failure risk, and the full manual operations of authorization, workload is huge, while maloperation
Risk is larger.
More gate inhibition's supplier integration solutions are proposed for the above variety of problems that large enterprise faces -- gate inhibition portion
Administration's system solves the variety of problems encountered above.
Summary of the invention
In order to solve the above technical problems, an embodiment of the present invention is intended to provide a kind of gate inhibition's dispositions method and gate inhibition's deployment services
Device, can unified plan integrate the access control system that more gate inhibition suppliers provide, automation is realized authorization function, is simplified at gate inhibition
The process of reason improves the efficiency of gate inhibition's deployment.
The technical scheme of the present invention is realized as follows:
The embodiment of the invention provides a kind of gate inhibition's dispositions methods, are applied in gate inhibition's deployment services device, comprising:
The first access card corresponding first is received to hold information;
When described first hold information be unauthorized hold information when, hold information and preset authorization according to described first
Rule obtains the first authority information corresponding with first access card;
According to first authority information, the first gate inhibition of first gate inhibition's server is determined from multiple gate inhibition's servers
Point, and be the authorization for the access permission that first access card realizes first access point, the first authorization message is generated, it is described
Multiple gate inhibition's servers are the management server of the access control system of the separate sources of gate inhibition's deployment services device distribution deployment;
First authorization message is issued to the first gate inhibition server, is described for the first gate inhibition server
One access card provides the access permission of first access point.
The embodiment of the invention provides a kind of gate inhibition's deployment services devices, comprising:
Receiving unit holds information for receiving the first access card corresponding first;
Acquiring unit, for when described first hold information be unauthorized hold information when, hold according to described first
Information and preset authorization rule, obtain the first authority information corresponding with first access card;
Determination unit, for determining that the first gate inhibition takes from multiple gate inhibition's servers according to first authority information
First access point of business device;
Generation unit, the authorization of the access permission for realizing first access point for first access card generate
First authorization message, the multiple gate inhibition's server are the gate inhibition system of the separate sources of gate inhibition's deployment services device distribution deployment
The management server of system;
Transmission unit, for issuing first authorization message to the first gate inhibition server, for first gate inhibition
Server provides the access permission of first access point for first access card.
The embodiment of the invention provides a kind of gate inhibition's dispositions method and gate inhibition's deployment services devices, by receiving the first access card
Corresponding first holds information;When first hold information be unauthorized hold information when, hold information and default according to first
Authorization rule obtains the first authority information corresponding with the first access card;According to the first authority information, from multiple gate inhibition's servers
In determine the first access point of first gate inhibition's server, and realize awarding for the access permission of the first access point for the first access card
Power, generates the first authorization message, and multiple gate inhibition's servers are the gate inhibition system of the separate sources of gate inhibition's deployment services device distribution deployment
The management server of system;The first authorization message to first gate inhibition's server is issued, is the first access card for first gate inhibition's server
The access permission of first access point is provided.Using above-mentioned technic relization scheme, the available gate inhibition of gate inhibition's deployment services device
Block and hold information when, gate inhibition's deployment services device can integrate more gate inhibition suppliers (gate inhibition's server) from unified plan and mention
The gate inhibition's server for needing to authorize is determined in the access control system of confession, and what is automated realizes authorization function to the access card, in this way
The processing directly oneself authorized from gate inhibition's server is avoided, the process of gate inhibition's processing is simplified, improves the effect of gate inhibition's deployment
Rate.
Detailed description of the invention
Fig. 1 is a kind of fabric topology figure of gate inhibition's deployment management system provided in an embodiment of the present invention;
Fig. 2 is the schematic diagram of the corresponding access control system of illustrative gate inhibition's server provided in an embodiment of the present invention;
Fig. 3 is a kind of flow chart one of gate inhibition's dispositions method provided in an embodiment of the present invention;
Fig. 4 is the entity hardware structural diagram in illustrative gate inhibition's deployment system provided in an embodiment of the present invention;
Fig. 5 is a kind of schematic diagram one at illustrative entrance guard management interface provided in an embodiment of the present invention;
Fig. 6-1 is a kind of schematic diagram two at illustrative entrance guard management interface provided in an embodiment of the present invention;
Fig. 6-2 is a kind of schematic diagram three at illustrative entrance guard management interface provided in an embodiment of the present invention;
Fig. 6-3 is a kind of schematic diagram four at illustrative entrance guard management interface provided in an embodiment of the present invention;
Fig. 6-4 is a kind of schematic diagram five at illustrative entrance guard management interface provided in an embodiment of the present invention;
Fig. 6-5 is a kind of schematic diagram six at illustrative entrance guard management interface provided in an embodiment of the present invention;
Fig. 7 is a kind of illustrative data file schematic diagram one provided in an embodiment of the present invention;
Fig. 8 is a kind of schematic diagram seven at illustrative entrance guard management interface provided in an embodiment of the present invention;
Fig. 9 is a kind of schematic diagram eight at illustrative entrance guard management interface provided in an embodiment of the present invention;
Figure 10 is a kind of illustrative data file schematic diagram two provided in an embodiment of the present invention;
Figure 11 is a kind of illustrative data file schematic diagram three provided in an embodiment of the present invention;
Figure 12 is a kind of illustrative data file schematic diagram four provided in an embodiment of the present invention;
Figure 13 is a kind of flowchart 2 of gate inhibition's dispositions method provided in an embodiment of the present invention;
Figure 14 is a kind of flow chart 3 of gate inhibition's dispositions method provided in an embodiment of the present invention;
Figure 15 is a kind of illustrative data file schematic diagram five provided in an embodiment of the present invention;
Figure 16 is a kind of flow chart four of gate inhibition's dispositions method provided in an embodiment of the present invention;
Figure 17 is a kind of flow chart five of gate inhibition's dispositions method provided in an embodiment of the present invention;
Figure 18 is a kind of flow chart six of gate inhibition's dispositions method provided in an embodiment of the present invention;
Figure 19 is a kind of flow chart for gate inhibition's dispositions method that the embodiment of the present invention also provides;
Figure 20 is a kind of structural schematic diagram one of gate inhibition's deployment services device provided in an embodiment of the present invention;
Figure 21 is a kind of structural schematic diagram two of gate inhibition's deployment services device provided in an embodiment of the present invention;
Figure 22 is a kind of structural schematic diagram three of gate inhibition's deployment services device provided in an embodiment of the present invention;
Figure 23 is a kind of structural schematic diagram four of gate inhibition's deployment services device provided in an embodiment of the present invention;
Figure 24 is a kind of structural schematic diagram five of gate inhibition's deployment services device provided in an embodiment of the present invention;
Figure 25 is a kind of structural schematic diagram six of gate inhibition's deployment services device provided in an embodiment of the present invention.
Specific embodiment
Following will be combined with the drawings in the embodiments of the present invention, and technical solution in the embodiment of the present invention carries out clear, complete
Site preparation description.
A kind of fabric topology figure of gate inhibition's deployment management system is provided for the embodiment of the present invention as shown in Figure 1, in the present invention
In embodiment, the fabric topology figure of gate inhibition's deployment management system in Fig. 1 may include: client layer, multiple gate inhibition's servers, one
A gate inhibition's deployment services device, database, auxiliary system, teller system, all-purpose card consumption system and other application system.
Wherein, gate inhibition's server characterizes total gate inhibition's server on the backstage of a gate inhibition supplier, which can
To support the access control system of multiple access points of client layer, and gate inhibition's server of different suppliers can pass through auxiliary system
Structure is managed with gate inhibition's deployment services device formal distribution formula, and gate inhibition's deployment services device can provide access card and hold
The communication interface (or service communication interface) of card information, provides communication interface service for other application system, for other function
The function of oneself is realized in service;Meanwhile gate inhibition's deployment services device also respectively with all-purpose card consumption system and teller system
Connection, the setting and more new change that gate inhibition's deployment services device obtains access card and the information that holds from all-purpose card consumption system, with reality
Now issuing to the access permission of gate inhibition's server, and swipe the card to record for the gate inhibition of gate inhibition's server upload and open to user
Service system carries out corresponding function treatment for HR (specific user).
It should be noted that the other application system in the embodiment of the present invention may include: mail center, print service,
Umbrella system or customer service attendance checking system etc. are borrowed in guest system, meeting signature system, financial system, administration, wherein the other application
Card-reading apparatus is both provided in system, for using access card to realize corresponding function.
In embodiments of the present invention, employee: employee's registration or change access card when, can be from a unified all-purpose cards
After sending out access card corresponding in consumption system, gate inhibition's deployment services device (i.e. entrance guard management platform) is gone to by interface data stream,
Entrance guard management platform transfers to each gate inhibition's server correspondence by automatic authorization engine automatic authorization or by manually authorizing
Each access control system in, after employee's brush access card, record of swiping the card can be synchronized to entrance guard management platform, and the entrance guard management platform is logical
Open interface is crossed to be supplied to HR and other department user attendances or provide welfare (food, subsidy etc.).
Gate inhibition's server: the newly-increased any gate inhibition supplier (i.e. gate inhibition's server) of company, it is only necessary to according to agreement
Entrance guard management platform is linked by auxiliary system.After being successfully accessed for employee and administrator company any one door
Prohibiting point is no any difference, and employee only needs to brush the access card operation of oneself, and administrator only needs entrance guard management
The permission that platform management difference gate inhibition supplier corresponds to access point can.
Other application system: there are a lot of other application systems for intra-company, are wherein provided in application system corresponding
Auxiliary card-reading apparatus, such as print service card reader, mail center card reader, financial system card reader, etc., these are
System is closed after needing the work card for reading access card by the card-reading apparatus of auxiliary by the card number and employee of inquiry entrance guard management platform
It is interface, employee information can be directly called by work card, its institute of connecting easily extremely is blocked by a Zhang Gong in intra-company
Some internal services.
All-purpose card consumption system: all-purpose card consumption system is responsible for the hair of employee's access card as unified hair access card end
It puts, and the synchronization that data after access card are deleted in newly-increased modification, the access permission after state of access card changes is provided
By simultaneously operating;Such as after work card is reported the loss, access permission will be also recovered in 5 minutes.
Guest system: visitor is that more special one kind can be by the crowd of company gate inhibition, when their permission has zero
Property, the features such as variability, entrance guard management platform has opened unified encryption interface for its calling according to its feature, allows guest system
Rights management is carried out by interface management visitor card and two dimensional code paper card.
In embodiments of the present invention, a gate inhibition supplier, that is, gate inhibition's server corresponding access control system schematic diagram is as schemed
Shown in 2, gate inhibition's server can support multiple access control systems, and each access control system characterizes the setting of an access point, one
It may include: card reader, electric control lock, access controller, power supply, exit button and alarm etc. in a access control system.Wherein,
Card reader, alarm, exit button, electric control lock are all to be controlled by access controller, and access controller is serviced by gate inhibition
The control of the access permission of access card is realized in the control of device, and electric control lock is controlled by access controller, and user or employee can pass through
The brush access card in card reader is realized the on and off of door by access controller control electric control lock.
It should be noted that in embodiments of the present invention, entrance guard management platform (gate inhibition's deployment services device) is responsible for gate inhibition
The data that card data and each gate inhibition's server upload are collected, and are then put together and are managed, then by all docking
Task or function are put together, and no longer go directly to provide any clothes by the server (i.e. each gate inhibition's server) of gate inhibition supplier
It is engaged in access control system, while incorporating the resource of all Intranets, for automation authorization and the service of providing the foundation of gate inhibition's serviceization.
The embodiment of the present invention realizes following embodiment based on the fabric topology figure of Fig. 1.
Embodiment one
The embodiment of the invention provides a kind of gate inhibition's dispositions methods, as shown in figure 3, being applied in gate inhibition's server, the party
Method may include:
S101, it receives the first access card corresponding first and holds information.
In embodiments of the present invention, access card open the relevant processing of the cards such as card can by all-purpose card consumption system come into
Row.
In access control system, every access card can correspond to holder's (such as employee information), i.e. access card
Identification information it is corresponding with the information that holds, and it is which information that holds can then be consumed in all-purpose card that access card is corresponding on earth
It is handled inside system.For example, the occurrences in human life in enterprise can be disappeared by all-purpose card in gate inhibition's deployment in an enterprise
The corresponding client of charge system carries out the setting of access card and the information that holds, then by the access card set and the information etc. that holds
Related data is transferred to all-purpose card consumption system, and then can be sent to gate inhibition's deployment services device by all-purpose card consumption system,
Gate inhibition's deployment services device can be according to progress access permission in the related datas such as access card and the corresponding information that holds
It issues.It holds information that is, gate inhibition's deployment services device can receive to the first access card corresponding first.Its
In, the affiliated person's information of the corresponding access card that the information that holds in the embodiment of the present invention refers to.
It should be noted that in embodiments of the present invention, gate inhibition's deployment services device receives the first access card corresponding first
The process for the information that holds can be applied in the scene that new access card needs to open, and can also apply and make up in access card, change
In the several scenes such as card, the embodiment of the present invention is with no restriction.
Optionally, first to hold in information may include: that the first holder mark and first are held in embodiments of the present invention
Block the information of characterization holder's identity such as people's affiliated department information, the specific data content embodiment of the present invention is with no restriction.
S102, when first hold information be unauthorized hold information when, advised according to the first hold information and preset authorization
Then, the first authority information corresponding with the first access card is obtained.
After gate inhibition's deployment services device reception the first access card corresponding first holds information, due to gate inhibition's deployment services
The corresponding information that holds of received first access card of device had awarded the affiliated person of access card of permission before can be, that is,
Say, this time gate inhibition's deployment services device received first hold information may be new access card application deployment scene, it is also possible to
Be must access card change card or mend the application scenarios of card, be to need to hold letter to first in gate inhibition's deployment services device therefore
Detection of breath whether authorized, when detect first hold information be unauthorized hold information when (i.e. the first access card
Affiliated person be the user for carrying out gate inhibition's deployment for the first time), what which can be carried out access permission issues place
It manages.Then, gate inhibition's deployment services device can according to first hold information and preset authorization rule, obtain with the first access card
Corresponding first authority information.Wherein, the first authority information allows to make for characterizing the affiliated person of the corresponding access card of information that holds
Access permission relevant information.
It should be noted that user be can enter entrance guard management interface by the browser in terminal, and then realize with
The data interaction of gate inhibition's deployment services device.Entity hardware configuration in gate inhibition's deployment system as shown in Figure 4 may include: door
Prohibit deployment services device 1, terminal 2-1 to 2-5 and network 3, in embodiments of the present invention, it include router, gateway etc. in network 3
Network entities are waited, are not embodied in Fig. 4.Terminal 2-1 to 2-5 passes through cable network or wireless network and gate inhibition's deployment services device
Information exchange is carried out, to receive preset authorization regular transmission from terminal 2-1 to 2-5 to gate inhibition's deployment services device.The class of terminal
Type is as shown in figure 4, (eventually including mobile phone (terminal 2-3), tablet computer or PDA (terminal 2-5), desktop computer (terminal 2-2), PC machine
Hold 2-4), the types such as all-in-one machine (terminal 2-1).Wherein, application needed for various users being equipped in terminal, for example have amusement
The application (such as Video Applications, audio play application, game application, ocr software) of function, for another example has the application of service function
(such as digital map navigation application purchases by group application, camera application, financing application, browser or payment application).
In embodiments of the present invention, gate inhibition's deployment services device to the access of gate inhibition's server etc. and the authorization of access permission or
Issue is also auxiliary adjustment and management can be carried out by the operation of terminal by user.
In embodiments of the present invention, gate inhibition's deployment services device can by terminal carry out gate inhibition's access-in management, empowerment management,
Reconciliation and check, multiple functions such as record and system administration of checking card.Wherein, entrance guard management interface as shown in Figure 5, these functions
It can be realized by the operation at the entrance guard management interface of the terminal communicated with gate inhibition's deployment services device.
Here, as in Figure 6-1, gate inhibition's access-in management is operated (access information configuration) in terminal, to obtain
APP ID and APP KEY, and it is uploaded to gate inhibition's deployment services device, gate inhibition supplier (i.e. door is given by gate inhibition's deployment services device
Prohibit server) the corresponding APP ID and APP KEY of distribution, encrypt when user data interacts with gate inhibition's server
It uses, to guarantee the safety of transmission.
Specifically, it may include: gate inhibition's deployment services device and door that APP ID and APP KEY encrypted transmission, which improves security mechanism,
Prohibit server before data is transmitted, the data transmitted every time are subjected to positive sequence according to the parameter name of each data,
All parameter names and parameter values conspire to create character string, then the KEY value of backstage setting is concatenated into above-mentioned tail of string, obtain
First character string obtains the signing messages of this data finally, encrypting using md5 encryption algorithm to the first character string, then
Carry out the transmission of data.And during carrying out data transmission, whether gate inhibition's deployment services device or gate inhibition's server exist
When receiving the data that transmission comes, judge that the data are all completely, when judging that the data are complete, to judge the A.L.S. of data
Whether breath is correct, if correctly, just realizing business logic processing, finally returning to the successful information opposite end;It is lost conversely, then directly returning
It is defeated by opposite end.
In the embodiment of the present invention, it is all carry out with gate inhibition's deployment services device instruction interaction can using above-mentioned mechanism into
Row, instructions all in this way guarantee the safety of communication by encrypted authentication.
In embodiments of the present invention, gate inhibition supplier needs to report the door of corresponding access control system daily according to the agreement of access
Prohibit point, gate inhibition's rank (can be understood as access permission), there are also the mapping relations before access point and gate inhibition's rank.Gate inhibition's deployment
Server can be packaged the gate inhibition's rank for encapsulating gate inhibition's rank Cheng Xin of different gate inhibition suppliers, for authorizing access permission.
It should be noted that the effect of gate inhibition's access-in management is exactly in order to which access point is synchronous, access point, which synchronizes, refers to gate inhibition
Deployment services device obtains the setting information of access point, since the data volume of access point is little, data from each gate inhibition's server
It is relatively fixed, change less, therefore, each gate inhibition's server can be according to the first preset time or frequency to gate inhibition's deployment services device
The information of access point in synchronous gate inhibition's server.For example, once a day etc..
Specifically, each gate inhibition's server be the information of access point is uploaded to the specified address in auxiliary system (i.e. with
Card), gate inhibition's deployment services device specified address is then informed, in this way, gate inhibition's deployment services device can go the auxiliary system
In go to transfer the information of access point.
Illustratively, in embodiments of the present invention, the encoded data file format of the information of access point can be with are as follows: UTF-8;
The data file of the information of access point is named:
TencentAccessPoint- { vendor number }-{ yyyyMMdd }-{ total line number } .info
It wherein, should include the access point of full dose in gate inhibition's provider system (gate inhibition's server) in standard data file
Information.No matter whether the access permission in gate inhibition's server in the first preset time, which changes, requires to upload this document.
Order of the field can be in data file are as follows: city-building-gate inhibition's point identification-access point title-device name
(mark of access control equipment).
The organizational form principle of data file are as follows: it is separated between field and field using " # ", it is capable to be used between row
" & " is separated.Wherein, data file example is as shown in fig. 7, city-building-gate inhibition's point identification-access point title-equipment
Title can be with are as follows: Shenzhen-flies the forms such as the building Ya Da-FYD0001-10 gate-equipment 1.
As in fig. 6-2, empowerment management: Regional Admin and system manager (user) pass through the access permission in terminal
Authorization can carry out authorization access permission check and manual administration, to know that all access card carries out gate inhibition's rank and door
The authorization for prohibiting point, realizes the function and hand that one-to-many batch duplicating access permission is carried out to the corresponding access permission of access card
The support of dynamic auxiliary setting access permission keeps away peak and transfers (in view of peak period on and off duty of swiping the card, when carrying out hiding peak to authorization
Between section authorized), gate inhibition's deployment services device carry out access permission authorization processing when, can produce record (example at the terminal
Such as, permission modification record, holder's change record or holder's deletion etc.), gate inhibition portion is known so that user side will pass through terminal
Server is affixed one's name to the processing result of access permission.
As shown in Fig. 6-3, reconciliation and check: gate inhibition supplier can periodically report the previous day to gate inhibition's deployment services device daily
The record of swiping the card of gate inhibition, hold information, corresponding access permission data of the information that holds etc..Gate inhibition's deployment services device is in parsing data
While can verify data with the presence or absence of abnormal and different situation, abnormal data is sounded an alarm, it is raw for uneven data
It can be shown in terminal at uneven report, to facilitate staff (user) by hand to be operated terminal to gate inhibition
Data in the database of deployment services device are handled.
As shown in Fig. 6-4, record of checking card: the record of swiping the card for the access card that gate inhibition's deployment services device reports gate inhibition's server
Filing and data analysis can be carried out, and provide open interface for HR and each business department's attendance and provide welfare (food,
Subsidy etc.).These functions can check card record by the calling of user at the terminal to realize the number of gate inhibition's deployment services device
According to analysis and information exchange.
As shown in Fig. 6-5, system administration: may include maintenance management (data dictionary and the data dictionary class of data dictionary
Not), log management and system configuration management (automatic authorization engine function, synchronizing information and access card automatic synchronizing function)
Deng for gate inhibition's automatic management process support service of providing the foundation.These functions can pass through the behaviour of user at the terminal
Make to realize the configuration on gate inhibition's deployment services device.
In short, terminal provides the auxiliary such as visualization display and manual correction for the various functions processing of gate inhibition's deployment services device
Management, carries out visualization Added Management to gate inhibition's related data and function convenient for staff or administrative staff.
Illustratively, it is based on above-mentioned system shown in Fig. 4, is awarded as shown in figure 8, carrying out access permission at the terminal with user
For power, after administrative staff (such as Xiao Ming), which log in oneself, successfully logs in entrance guard management interface, administrative staff click " gate inhibition's power
When limit authorization ", the corresponding relevant information of access card of oneself can be checked, for example, the information that holds, access card status information and door
Prohibit permission grant state etc., while also showing the operation that can be carried out, for example, details, authorizing, synchronizing, when administrative staff's point
After hitting " details ", interface as shown in Figure 9 is shown, the access permission information and own that the access card of the administrative staff has authorized
Access permission information just shows that administrative staff can also carry out " selection " operation to different access permissions, works as management
When personnel view gate inhibition's deployment services device due to abnormal authorization failure or mistake, it can carry out assisting authorization (can be with manually
It carries out keeping away the operations such as peak submission).In addition, administrative staff can check the access permission authorization of oneself incessantly, it can also be to other
Employee or staff above-mentioned check and operate.
It should be noted that in embodiments of the present invention, being stored in gate inhibition's deployment services device in its corresponding client
The information such as the preset authorization rule (automatic authorization rule) of biography.Wherein, user can enter gate inhibition by the client in terminal
Then administration interface realizes the setting of preset authorization rule at entrance guard management interface, may include authorization in preset authorization rule
The setting etc. of access permission finally uploads preset authorization rule and gives gate inhibition's deployment services device, to be stored in gate inhibition's deployment services device
Database (database as shown in figure 1) in.
In embodiments of the present invention, preset authorization rule can be characterized as pair of preset department's information and permission group information
It should be related to, may include: permission group mark, permission group name (i.e. the title of gate inhibition's rank) and access point in the permission group information
Mark.In this way, once it is determined that first holds department's information in information, then gate inhibition's deployment services device can direct basis
Preset authorization rule determines first first authority information for holding information or the first access card, i.e. permission group information.
It should be noted that in embodiments of the present invention, all gate inhibition's servers are stored in gate inhibition's deployment services device
Original right group information.Since the data volume of permission group information is little, data are relatively fixed, and variation is less, therefore, each gate inhibition's clothes
Being engaged in device can be according to the permission group information of the second preset time or frequency into the synchronous gate inhibition's server of gate inhibition's deployment services device.Example
Such as, once a day etc..
Specifically, each gate inhibition's server is the specified address (i.e. voucher) uploaded to permission group information in auxiliary system,
Then gate inhibition's deployment services device specified address is informed, in this way, gate inhibition's deployment services device can be gone in the auxiliary system
Transfer permission group information.
Illustratively, in embodiments of the present invention, the encoded data file format of permission group information can be with are as follows: UTF-8;Power
Standard data format and the TFS information for limiting group information are as follows:
TFS account: gate inhibition's server is distributed when accessing registration;
TFS password: gate inhibition's server is distributed when accessing registration;
Encoded data file format: UTF-8;
Data file name:
TencentAccessRights- { vendor number }-{ yyyyMMdd }-{ total line number } .info
It wherein, should include the permission group of full dose in gate inhibition's provider system (gate inhibition's server) in standard data file
Information.No matter whether the access permission in gate inhibition's server in preset time, which changes, requires to upload this document.
Order of the field can be in data file are as follows: permission group mark-permission group name-gate inhibition's point identification.
The organizational form principle of data file are as follows: it is separated between field and field using " # ", it is capable to be used between row
" & " is separated.Wherein, data file example is as shown in Figure 10, and permission group mark can be AG0001, and permission group name can be with
Are as follows: fly it is sub- reach public authority, gate inhibition's point identification can be with are as follows: FYD001, FYD002, FYD003, FYD004 and FYD005 etc..
S103, according to the first authority information, first that first gate inhibition's server is determined from multiple gate inhibition's servers
Prohibit point, and the authorization of the access permission for the first access card the first access point of realization, generates the first authorization message, multiple gate inhibitions' clothes
Business device is the management server of the access control system of the separate sources of gate inhibition's deployment services device distribution deployment.
Gate inhibition's deployment services device according to first hold information and preset authorization rule, obtain it is corresponding with the first access card
After first authority information, gate inhibition's deployment services device due to having had learned that the first authority information, that is, be aware of this
One access card can authorize the permission of which access point, and access point is that have corresponding relationship with gate inhibition's server, therefore, door
Prohibit deployment services device be can be by the first authority information never with determining corresponding can authorize the in gate inhibition's server
One access point, and first gate inhibition's server belonging to first access point.Then, gate inhibition's deployment services device can give first
Prohibit the access permission of card the first access point of authorization.Specifically, gate inhibition's deployment services device is according to the first access point and first
The relevant information for prohibiting card, generates the first authorization message of the first access card.In the embodiment of the present invention, multiple gate inhibition's servers are
The management server of the access control system of the separate sources of gate inhibition's deployment services device distribution deployment, i.e., multiple gate inhibition suppliers.
In embodiments of the present invention, the first access point is the general designation of the delegatable access point of the first access card, the first gate inhibition
Server is gate inhibition's server belonging to the first access point, which may be gate inhibition's server, can also
It can be multiple gate inhibition's servers, the quantity of specific gate inhibition's server is the type of the server belonging to the first access point to determine
Fixed, the embodiment of the present invention is with no restriction.
In embodiments of the present invention, the first authorization message may include: first hold the first holder mark in information,
The first permission group mark, first gate inhibition's point identification and access card licensing status in first access card mark, the first authority information
Deng.
It should be noted that in embodiments of the present invention, (the first authorization message is first in authorization message to authorization message
The corresponding authorization message of access card) encoded data file format: UTF-8;Data file name can be with are as follows:
TencentAcssessAuthorize- { vendor number }-{ yyyyMMdd }-{ total line number } .info.
Order of the field can be in data file are as follows: holder's mark-access card mark-permission group mark-gate inhibition's point identification-
Access card licensing status.Wherein, ", " segmentation can be used between different rights group mark, it can be between different gate inhibition's point identifications
Use ", " segmentation;
The organizational form principle of data file are as follows: it is separated between field and field using " # ", it is capable to be used between row
" & " is separated.Wherein, data file example is as shown in figure 11, and holder's mark can be 4876, and access card mark can be with
Are as follows: S0001, permission group mark can be AG0001, AG0002, AG0003, and gate inhibition's point identification can be with are as follows: FYD001, access card
Licensing status can be to enable, deactivate and report the loss.
It should be noted that in embodiments of the present invention, authorization message is the gate inhibition that can be issued in gate inhibition's server
In system, and authorization message is also that gate inhibition's server is needed to return to gate inhibition's deployment services device, so as to gate inhibition's deployment services
Device can carry out the analysis of abnormal data.Authorization message passback refers to that gate inhibition's deployment services device obtains door from each gate inhibition's server
Prohibit the authorization message of card, be used for authorization message reconciliation, carry out data exchange in the form of normative document in the embodiment of the present invention,
Standard data file (authorization message of full dose) is uploaded to specified address by each gate inhibition's server, and the frequency of upload is to be separated by the
Three preset times, for example, once a day.It wherein, should include whole authorizations of gate inhibition's server before deserving in data file
Information, no matter whether the access permission in gate inhibition's server in third preset time, which changes, requires to upload this document.
Specifically, each gate inhibition's server is the specified address (i.e. voucher) uploaded to authorization message in auxiliary system, so
Gate inhibition's deployment services device specified address is informed afterwards, in this way, gate inhibition's deployment services device can go in the auxiliary system to go to adjust
Take authorization message.
S104, the first authorization message to first gate inhibition's server is issued, is that the first access card mentions for first gate inhibition's server
For the access permission of the first access point.
For gate inhibition's deployment services device after generating the first authorization message, which can know first
Prohibit and block corresponding delegatable access permission, then, which is issued to first for the first authorization message
Prohibit server, which is handed down to the first access point again, is embodied as the first access card and provides the first access point
The authorization of access permission.In this way, user can use the gate inhibition of the first access card the first access point of opening.
It should be noted that first gate inhibition's server provides the realization of the access permission of the first access point for the first access card
The process of gate inhibition is exactly the implementation of access control system above-mentioned.
Further, in embodiments of the present invention, gate inhibition's deployment services device issues first and holds information to described first
Prohibit server.It should be noted that in embodiments of the present invention, gate inhibition's deployment services device is issuing the first authorization message to first
When gate inhibition's server, which is still accordingly handed down to first gate inhibition's server first information that holds
?.This is can be when realizing access control system for the ease of first gate inhibition's server, it is known that with swiping the card for the first access card
With the information of holder, that is, hold synchronizing information, and then carries out when subsequent passback cardholder information is to gate inhibition's deployment services device
Reconciliation.
In embodiments of the present invention, the information that holds real-time synchronization refers to that gate inhibition's deployment services device platform becomes in the information that holds
When changing (for example, open card, change card or make up card), which issues the letter that holds of variation to each gate inhibition's server
Breath.The data for actively calling gate inhibition's server to provide in a manner of through HTTP POST in access by gate inhibition's deployment services device connect
It receives interface IP address (voucher i.e. above-mentioned), is desynchronized the information that holds according to this receiving interface address, then gate inhibition's server meeting
Reception state is returned to, if reception state is failure (for example, fail), gate inhibition's deployment platform can be gone again separated in time again
It is secondary to carry out issuing the information that holds, it is just abandoned until having tried preset times and still having failed.Optionally, certain time can be 3 minutes,
Preset times can be 3 times, and the setting embodiment of the present invention of the value of certain time and preset times is with no restriction.
Specifically, gate inhibition's deployment services device actively calls gate inhibition's server to mention in access in a manner of through HTTP POST
The data receiver interface IP address of confession is realized by auxiliary system (i.e. Gas system).In the embodiment of the present invention, obtains Gas and hold
The process of longization record (i.e. voucher): gate inhibition's deployment services device obtains gate inhibition's server upload Gas using HTTP POST method and holds
Longization record.Gate inhibition's deployment services device is passed to parameter SynDate synchronization time, such as " 20151215 ", when gate inhibition's server registration
The address (voucher) of the synchronous service inputted in gate inhibition's deployment services device is waited, the data format of return parameters is Json.Example
Property, return parameters example is as follows:
Wherein, parameter declaration is as shown in table 1.
Table 1
In embodiments of the present invention, gate inhibition's deployment services device is the information that will hold when progress access permission issues
It is handed down to gate inhibition's server together, it is as shown in table 2 specifically to issue the content that parameter information includes.
Table 2
In embodiments of the present invention, the content for the reception state parameter that gate inhibition's server returns can be as shown in table 3.
Table 3
In embodiments of the present invention, gate inhibition's server in the embodiment of the present invention is needed to the information back that holds to gate inhibition
Deployment services device.The information back that holds refers to that gate inhibition's deployment services device obtains cardholder information from each gate inhibition's server,
For the information reconciliation that holds, in the embodiment of the present invention data exchange, each gate inhibition's service are carried out in the form of normative document
Standard data file (cardholder information of full dose) is uploaded to specified address by device, the frequency of upload be separated by the 4th it is default when
Between, for example, once a day.It wherein, should include the whole information that hold deserved in preceding gate inhibition's server, nothing in data file
Whether changed by the information that holds in gate inhibition's server in the 4th preset time and requires to upload this document.
Specifically, each gate inhibition's server is the specified address (i.e. voucher) uploaded to authorization message in auxiliary system, so
Gate inhibition's deployment services device specified address is informed afterwards, in this way, gate inhibition's deployment services device can go in the auxiliary system to go to adjust
Take the information that holds.
In embodiments of the present invention, the encoded data file format for the information that holds: UTF-8;Data file name can be with are as follows:
TencentCardholder- { vendor number }-{ yyyyMMdd }-{ total line number } .info
It wherein, should include the letter that holds of full dose in gate inhibition's provider system (gate inhibition's server) in standard data file
Breath.
Order of the field can be in data file are as follows: city-employee type-employee identification-employee English name-employee's Chinese
Name-department's mark-department name-access card mark.
The organizational form principle of data file are as follows: it is separated between field and field using " # ", it is capable to be used between row
" & " is separated.Wherein, data file example is as shown in figure 12, and city can be that Shenzhen, employee's type can be formal, member
Work mark can be 6, the entitled V_hsli of employee's English, and in entitled Lee of employee's Chinese, department's mark can be 8183, department name
It can be S3 function system-HR and management line, access card mark can be with are as follows: V0001 etc..
Illustratively, when the New Hire Onboarding in enterprise, staff can all-purpose card consumption system into
The typing of the information such as row holder and access card, that is, open a new access card, and all-purpose card consumption system will also hold letter
The information of breath and access card uploads to gate inhibition's deployment services device, which can be regular according to preset authorization,
Know the authority information for the access point that the employee in the information that holds should be authorized to, then, which can
To carry out the authorization of access permission for the access card according to authority information, i.e. distributing authentication information gives corresponding gate inhibition's server,
So that gate inhibition's server can provide the access permission of access point in its access control system for above-mentioned access card.
It is understood that in embodiments of the present invention, the available access card of gate inhibition's deployment services device and the information that holds
When, gate inhibition's deployment services device can integrate the access control system of more gate inhibition suppliers (gate inhibition's server) offer from unified plan
The middle determining gate inhibition's server for needing to authorize, and what is automated realizes authorization function to the access card, this avoid from gate inhibition
The processing of server directly oneself authorization, simplifies the process of gate inhibition's processing, improves the efficiency of gate inhibition's deployment.
Further, as shown in figure 13, after S101, and before S103, a kind of gate inhibition provided in an embodiment of the present invention
It can also include: S105-S107 in dispositions method.It is as follows:
S105, when first hold information be authorized hold information when, obtain it is corresponding with the second access card second weigh
Limit information, the second access card are the first access card authorized for holding corresponding first access point of information.
S106, the second authority information is determined as the first authority information.
After gate inhibition's deployment services device reception the first access card corresponding first holds information, due to gate inhibition's deployment services
The corresponding information that holds of received first access card of device had awarded the affiliated person of access card of permission before can be, that is,
Say, this time gate inhibition's deployment services device received first hold information may be new access card application deployment scene, it is also possible to
Be must access card change card or mend the application scenarios of card, be to need to hold letter to first in gate inhibition's deployment services device therefore
Detection of breath whether authorized, when detect first hold information be authorized hold information when (i.e. the first access card
Affiliated person be the user for having carried out gate inhibition's deployment), characterization may first hold information it is corresponding before the second access card
It loses or is broken, all-purpose card consumption system has opened the first access card to the user again, that is to say, that gate inhibition disposes clothes
Business device in be stored with this first hold information it is corresponding before the second access card the second authority information, then, the gate inhibition portion
What administration's server can be carried out access permission issues processing.Then, gate inhibition's deployment services device just obtains and the second access card
Corresponding second authority information, the second access card are the first access card authorized for holding corresponding first access point of information.
That is, gate inhibition's deployment services device first holding corresponding second authority information of information of directly acquiring the power of having awarded, in this way,
Gate inhibition's deployment services device can be directly using the second authority information as the first authority information of the first access card, the gate inhibition portion
The authorization that server realizes the access permission of the first access card according to first authority information is affixed one's name to, the process of authorization is with S103-
The realization process of S104 is consistent, and details are not described herein again.
S107, the access permission for abolishing the second access card.
After gate inhibition's deployment services device has given the first access card the access permission of the first access card before, illustrate second
Access card is to be likely to the case where occurring losing or damaged, and therefore, the second access card is not just used, then in order to avoid
Someone finds second access card use, then, gate inhibition's deployment services device needs to abolish by the access permission of the second access card,
Such as it deactivates.
It is understood that such situation gate inhibition's deployment services device can carry out the access card lost and be broken changing card
With mend card processing, directly acquire known authority information and carry out authorization and issue, simplify the authorization flow of access control system, at the same also and
When abolishment before the second access card access permission, ensure that the safety of access control system.
Further, as shown in figure 14, after S104, may be used also in a kind of gate inhibition's dispositions method provided in an embodiment of the present invention
To include: S108-S111.It is as follows:
S108, it receives first gate inhibition's server uploads corresponding with the first access card first and swipes the card record.
Gate inhibition's deployment services device holds the first gate inhibition after the access permission for first the first access point of access card authorization
The user of card can use first access card to realize gate function, i.e. the first access card can be used at first in user
Prohibit and carry out behavior of swiping the card in the card reader of point, then, first gate inhibition's server obtains this and first swipes the card record, and then, this
First record of swiping the card has been uploaded to gate inhibition's deployment services device by one gate inhibition's server, i.e. gate inhibition's deployment services device has received first
Prohibit the first access card corresponding first that server uploads to swipe the card record.
In embodiments of the present invention, first swipe the card record in may include: charge time, type of swiping the card, access point information
Etc. contents, the embodiment of the present invention is with no restriction.Wherein, type of swiping the card may include: that gate inhibition receives and gate inhibition's refusal.
It should be noted that in embodiments of the present invention, gate inhibition's server returns record of swiping the card and refers to gate inhibition's deployment services
Device obtains the record of swiping the card of employee or user from each gate inhibition's server, here, using standard data file form into
Row data exchange.
Swiping the card the encoded data file format of record can be with are as follows: UTF-8;Swipe the card record data file name:
TencentCreditcard- { vendor number }-{ yyyyMMdd }-{ total line number } .info
It wherein, should include note of all swiping the card in gate inhibition's provider system (gate inhibition's server) in standard data file
Record.Record of no matter whether swiping the card in gate inhibition's server in the first preset time requires to upload this document.Also, gate inhibition takes
Business device can upload above-mentioned file according to default 5th time interval, such as once a day etc., specific default 5th time
The embodiment of the present invention is set with no restriction.
In embodiments of the present invention, order of the field can be in data file are as follows: flowing water mark-charge time-access point mark
Knowledge-access point title-access card identifies-type of swiping the card etc..
The organizational form principle of data file are as follows: it is separated between field and field using " # ", it is capable to be used between row
" & " is separated.Wherein, data file example is as shown in figure 15, and flowing water mark-charge time-gate inhibition's point identification-gate inhibition calls the roll
Title-access card identifies-type of swiping the card can be with are as follows: the building 0001#2015-11-68:45:33#FYD0001#10 gate #S000001#
The forms such as gate inhibition's receiving.
S109, swipe the card according to first record and the first authorization message, analyze the use state of the first access card.
S110, when the use state of the first access card is abnormal, the access permission of the first access card is deactivated.
Gate inhibition's deployment services device is swiped the card in obtain the upload of first gate inhibition's server corresponding with the first access card first
After record, which can swipe the card record and the first authorization message according to first, come analyze whether the
There is permission exception or abnormal appearance of swiping the card in one access card.And when the use state of the first access card is abnormal, door
The access permission of the first access card can be deactivated by prohibiting deployment services device, to avoid there is safety problem.
For example, the access permission at first 10 buildings gates of access card unauthorized, and gate inhibition's deployment services device takes in the first gate inhibition
It is engaged in the record of swiping the card that device uploads, knows that the first access card is at a time swiped the card and open the door at 10 buildings gates, then gate inhibition
Deployment services device has just analyzed the first access card and abnormal using state has occurred, then, gate inhibition's deployment services device
The access permission of first access card is deactivated, to guarantee the safety of access control system.
S111, swipe the card based on first record and preset function rule, realize the first function of the first access card, preset function
Rule is for determining whether to meet the condition of the first function of starting.
Gate inhibition's deployment services device is swiped the card in obtain the upload of first gate inhibition's server corresponding with the first access card first
After record, which just saves first and swipes the card record.In this case, gate inhibition's deployment services device is can to deposit
Contain much swiping the card records for the first access card, the first record of swiping the card can swipe the card the general designation of record for the first access card.In
It is that gate inhibition's deployment services device can swipe the card record when judging commuter time or the disengaging of user according to the first of storage
Between etc., so as to swipe the card record and preset function rule based on first, realize the first function of the first access card, and default function
It can be regular for determining whether to meet the condition of the first function of starting.
Illustratively, the first function in the embodiment of the present invention can be the function of granting overtime pay, preset function rule
Overtime pay etc., specific first function and this regular hair of preset function can be provided to meet the user that the default quitting time swipes the card
Bright embodiment with no restriction, as long as being available with the function of swiping the card and record to realize.
Further, as shown in figure 16, after S104, may be used also in a kind of gate inhibition's dispositions method provided in an embodiment of the present invention
To include: S112-S114.It is as follows:
S112, the state updating information that holds for receiving the first access card.
Issue the first authorization message of access permission to the first access card in gate inhibition's deployment services device, gate inhibition's server according to
After first authorization message is to the first access card authorization, which just realizes the unlatching of the first access point, and due to
The generations such as the case where one access card is left office or left there may be the holder of loss or the first access card, therefore, first
The state of holding for prohibiting card may change, and the state updating information that holds of access card can be all-purpose card consumption system to gate inhibition
Deployment services device issues.In embodiments of the present invention, the state of holding of the first access card can be normally, report the loss or leave
State, if the first access card normal use, then the state of holding is normal;If the first access card is lost, user reports the loss first
Access card, then the state of holding of the first access card is changed, that is, has received the state update that holds of the first access card
Information, then the state that holds of the first access card is to report the loss;If the holder of the first access card leaves office, then gate inhibition disposes
The state of holding that server can receive the first access card is updated to the more new information left, i.e. the first access card at this time
The state that holds is to leave.
S113, when hold state updating information be report the loss state when, the access permission of the first access card is deactivated.
S114, when hold state updating information be leave state when, the access permission of the first access card is deactivated, and abolishes
The access permission of first access card.
If gate inhibition's deployment services device has received the state updating information that holds of the first access card, then the gate inhibition disposes clothes
Business device then may determine that the use of the access permission of the first access card is affected, i.e., the first access card has been likely to occur accident
The case where occur, or when being restored to normal use from unexpected situation, can all receive the first access card holds state more
New information.And the first access card is characterized when the state updating information that holds is to report the loss state may lose or can not find,
In this way, the safety in order to guarantee access point, which can deactivate the access permission of the first access card, i.e.,
Access card licensing status becomes deactivated, while being handed down to gate inhibition's server, and gate inhibition's server is by the authorization shape of the first access card
State is updated to deactivate, and has just deactivated the access permission of the first access card, in this way, even if someone has found the first access card, also not
The first access card can be used to open the gate inhibition of the first access point.Likewise, when the state updating information that holds of the first access card
When for leave state, the holder of the first access card of characterization may leave office, then this first access card can not
Gate inhibition is carried out for the holder.Then, gate inhibition's deployment services device just deactivates the access permission of the first access card, and first
Access card can change the information that holds again and use to other employees, and at this moment, gate inhibition's deployment services device can abolish first
Prohibit the access permission of card, is the authorization that the first access card re-starts access permission with the information that holds according to new holder
Journey.
Further, as shown in figure 17, before S103, may be used also in a kind of gate inhibition's dispositions method provided in an embodiment of the present invention
To include: S115-S117.It is as follows:
S115, the corresponding authorized application of the first access card is received, carries the first authority information and first in authorized application and holds
Card information, authorized application allow corresponding first authority information of the first access card for requesting.
Gate inhibition's deployment services device determines that the first gate inhibition services according to the first authority information from multiple gate inhibition's servers
First access point of device, and the authorization of the access permission for the first access card the first access point of realization, generate the first authorization message
Before, the mode which obtains the first authority information can also be for by that can carry out with gate inhibition's deployment services device
The all-in-one machine of application gate inhibition in the other application system of communication is realized.This is because it is special to might have in a place
The setting of gate inhibition, such as room of mother and infant, special area gate inhibition etc. are various, then, these gate inhibition places may not be to everyone
It is open, but open to the user met certain condition, and when the user met certain condition wants above-mentioned zone, it can be with
Carry out authorized application on all-in-one machine, and the authorized application is for that please allow the first access card that can enter special gate inhibition
One authority information, which is the access permission information of the special gate inhibition of application, and in the first authorization message
That can carry the first authority information and first to hold information, such gate inhibition's deployment services device can either whose application which
In access permission, so as to determine whether first access card obtain the first authority information.
S116, response authorized application, to first hold information carry out identity audit.
S117, when identity audit passes through, allow for the first authority information to be determined as the first access card corresponding permission letter
Breath.
For gate inhibition's deployment services device after receiving the corresponding authorized application of the first access card, which can be with
Judge whether can permit by the first cardholder information and provide the first authority information to the first access card, that is to say, that gate inhibition
Deployment services device responds authorized application, carries out identity audit to first information that holds, and only identity audit is when passing through, and characterization is
It can permit first and hold the corresponding user of information or employee passes in and out special gate inhibition, in this way, gate inhibition's deployment services device just allows
First authority information is determined as the corresponding authority information of the first access card, subsequent gate inhibition's deployment services device can according to this
One authority information is the permission of the first special gate inhibition of access card authorization.
It should be noted that in embodiments of the present invention, it is also possible to which there are visitors come the case where visit, such situation
It can also be realized by process shown in Figure 17.
Specifically, visitor can want the user of visit by the all-in-one machine application in the guest system that doorway is arranged in
(such as name or extension number of user), access point and the identity information of oneself (identity card or cell-phone number etc., the embodiment of the present invention
With no restriction), i.e., gate inhibition's deployment services device has received authorized application, which responds the authorized application, right
First hold information (visitor's relevant information) carry out identity audit, send audit instruction to guest system, which can lead to
It crosses check logic and is made whether the inquiry agreed to the user of visit, it, will be same after the agreement feedback for the user for receiving visit
Meaning authorization is sent to gate inhibition's deployment services device, i.e. identity audit passes through, and then, which allows the first permission
Information is determined as the corresponding authority information of the first access card, and last gate inhibition's deployment services device authorizes for the first access card, and
And inform that guest system authorization is completed, which just sends out the first access card to visitor.
In embodiments of the present invention, the authorization time limit of the access card of guest mode may be conditional, for example, only working as
It effectively etc., can be improved in this way progress entrance guard management safety.
It should be noted that the case where user that the implementation process of guest mode applies also for forgets with access card faces
When the scene applied.
Further, in each application scenarios in example 1, as long as have the change of the authorization message of access card,
Gate inhibition's deployment services device all can real-time authorization information update, real-time authorization information update is changed when holder's authorization message
When, gate inhibition's deployment services device issues the authorization message after change to each gate inhibition's server.Gate inhibition's server is held according to each
Card information calls the interface of gate inhibition's server, may include that the information that holds (access card) is corresponding a plurality of to award in this time calling
Modification information is weighed, the offer in registration of gate inhibition's server is actively provided in a manner of through HTTP POST by gate inhibition's deployment services device
Data receiver interface IP address.
Wherein, gate inhibition's deployment services device can be as shown in table 4 to the parameter that gate inhibition's server sends data.
Table 4
Gate inhibition's server needs to return to reception state, if reception state is fail, gate inhibition's deployment services device can determine (example
Such as, 3 minutes) when send again data deduplication examination until preset times (for example, 3 times, the embodiment of the present invention is with no restriction).
Wherein, gate inhibition's server return parameters are as shown in table 5.
Table 5
It is understood that yes, either to change access card, lose access card, report the loss access card and the scenes such as still leave office, once door
Prohibit the authorization message variation of card, gate inhibition's deployment services device just needs to synchronize update with gate inhibition's server in real time, to guarantee
The normal update of access control system.
Further, as shown in figure 18, after S101, in a kind of gate inhibition's dispositions method provided in an embodiment of the present invention also
It may include: S118-S119.It is as follows:
S118, it receives the first access card corresponding second and swipes the card record, second, which swipes the card, is recorded as using the first access card pair
The card-reading apparatus of application system carries out behavior generation of swiping the card.
S119, record of swiping the card according to second transfer the first access card pair by the communication interface of access card and the information that holds
First answered holds information, and first information that holds is sent to the card-reading apparatus of application system.
It has received the first access card corresponding first in gate inhibition's deployment services device to hold after information, gate inhibition's deployment services
Device just by the first access card and first hold information corresponding relationship storage in the database, then in gate inhibition's deployment services device
It receives the card-reading apparatus of other application system uploads second to swipe the card when record, which is can root
It swipes the card record according to second, the first access card corresponding first is transferred by access card and the communication interface for the information that holds and is held letter
Breath, and first information that holds is sent to the card-reading apparatus of application system, so that application system foundation first holds information judgement
Whether allow to carry out the corresponding application function of the application system, wherein second, which swipes the card, is recorded as using the first access card to application
The card-reading apparatus of system carries out behavior generation of swiping the card.
In embodiments of the present invention, application system is any one in other application system.
It should be noted that the access card in embodiment one can be used as the mess card in dining room, the work card etc. of employee is realized
The function of all-purpose card.
It is understood that gate inhibition's dispositions method provided in an embodiment of the present invention can provide communication interface to other application
System, so that the corresponding information that holds of available first access card of other application system, to realize answering for application system
With the on and off of function, that is to say, that by the interface for the secondary development that gate inhibition's deployment system provides, can be very good to assist it
His system realizing function.I.e. gate inhibition's deployment services device can provide unified standard and agreement, be the secondary development of enterprises
The interface of unified standard is brought, every other application is towards gate inhibition's deployment services device, the energy of gate inhibition's server for enterprise
Power has been a black box.
A kind of gate inhibition's deployment services device provided in an embodiment of the present invention, when being applied to company's operation, entire company has largely
When employee, there is leaving office daily, report the loss, lose the people of work card, does not at this moment need the permission for removing recycling work card by hand, realize
Full-automatic authorization and recycling privilege feature, and implementation process specification, access card automation authorization access permission, is automatic
Change the infrastructure service of entrance guard management framework, is not in mistake, while process is simple and convenient.
Embodiment two
Under same inventive concept based on embodiment one, a kind of gate inhibition's dispositions method provided in an embodiment of the present invention, application
In gate inhibition's server, as shown in figure 19, this method may include:
S201, the first authorization message that gate inhibition's deployment services device is sent is received, the first authorization message is for characterizing first
Prohibit the corresponding access point information for allowing to authorize of card.
S202, according to the first authorization message, the first access point for allowing to authorize is determined from multiple access points.
S203, the access permission for authorizing first the first access point of access card.
In embodiments of the present invention, gate inhibition's server is exactly gate inhibition supplier, for gate inhibition's function supplier,
It accesses after gate inhibition's deployment services device, it is possible to receive the first authorization message of gate inhibition's deployment services device transmission, the first authorization letter
Breath is for characterizing the corresponding access point information for allowing to authorize of the first access card, and then gate inhibition's server can be according to the first authorization
Information allows the first access point authorized from the multiple red determinations of gold-idea in the access control system of oneself, then gives first
Prohibit the access permission that card authorizes first access point, the first access card is allowed to open the gate inhibition of the first access point.
It should be noted that description has been carried out in the structure of access control system in example 1, details are not described herein again.
Further, in embodiments of the present invention, gate inhibition's server is authorizing the first access point described in the first access card
After access permission, gate inhibition's dispositions method provided in an embodiment of the present invention can also include: S204-S205.It is as follows:
S204, it receives the first access point uploads corresponding with the first access card first and swipes the card record.
S205, the first record of swiping the card is uploaded to gate inhibition's deployment services device according to default upload strategy.
It swipes the card note when gate inhibition's server receives the first of the first access card that the card reader in oneself access control system transmits
When record, this first swipe the card record need to return to gate inhibition's deployment services device, specifically return really according to pre-
Gate inhibition's deployment services device is uploaded to if uploading strategy and first swiping the card to record.
Specifically, gate inhibition's server uploads first in real time swipes the card record to auxiliary system, and receive auxiliary system return
Validating documents, and validating documents are uploaded to gate inhibition in preset time (such as default 5th time) and dispose clothes by gate inhibition's server
Business, use when recording of being swiped the card for gate inhibition's deployment services device by auxiliary system acquisition first.Concrete implementation can refer to embodiment
The realization process introduced in one, details are not described herein again.
It is understood that gate inhibition's server in the embodiment of the present invention only needs to cooperate the data of gate inhibition's deployment services device
Interaction, authorization and authorization message update etc. are all that gate inhibition's deployment services device is managed collectively, and simplify gate inhibition's process flow.
Embodiment three
Under same inventive concept based on embodiment one to two, as shown in figure 20, the embodiment of the invention provides a kind of doors
Prohibit deployment services device 1, which may include:
Receiving unit 10 holds information for receiving the first access card corresponding first;
Acquiring unit 11, for when described first hold information be unauthorized hold information when, held according to described first
Card information and preset authorization rule, obtain the first authority information corresponding with first access card;
Determination unit 12, for determining the first gate inhibition from multiple gate inhibition's servers according to first authority information
First access point of server;
Generation unit 13, the authorization of the access permission for realizing first access point for first access card are raw
At the first authorization message, the multiple gate inhibition's server is the gate inhibition of the separate sources of gate inhibition's deployment services device distribution deployment
The management server of system;
Transmission unit 14, for issuing first authorization message to the first gate inhibition server, for described first
Prohibit server and provides the access permission of first access point for first access card.
Optionally, Figure 20, as shown in figure 21, gate inhibition's deployment services device 1 are based on further include: abolish unit 15;
The acquiring unit 11 is also used to the first access card of the reception corresponding first and holds after information, and described
According to first authority information, before the first access point for determining first gate inhibition's server in multiple gate inhibition's servers,
When described first hold information be authorized hold information when, obtain corresponding with the second access card the second authority information, institute
Stating the second access card is the described first access card authorized for holding corresponding first access point of information;
The determination unit 12 is also used to second authority information being determined as first authority information;
The abolishment unit 15, for abolishing the access permission of second access card.
Optionally, as shown in figure 21, gate inhibition's deployment services device 1 further include: analytical unit 16 and deactivated cell 17;
The receiving unit 10, be also used to it is described issue first authorization message to the first gate inhibition server it
Afterwards, the first gate inhibition server uploads corresponding with first access card first is received to swipe the card record;
The analytical unit 16 analyzes described for swiping the card record and first authorization message according to described first
The use state of one access card;
The deactivated cell 17, for when the use state of first access card is abnormal, by first gate inhibition
The access permission of card deactivates.
Optionally, as shown in figure 21, gate inhibition's deployment services device 1 further include: realize unit 18;
The realization unit 18, to receive the first gate inhibition server uploading with first access card pair for described
First answered is swiped the card after record, is swiped the card record and preset function rule based on described first, is realized first access card
First function, the preset function rule is for determining whether to meet the condition for starting first function.
Optionally, Figure 20, as shown in figure 22, gate inhibition's deployment services device 1 are based on further include: deactivated cell 17 and abolishment
Unit 15;
The receiving unit 10, be also used to it is described issue first authorization message to the first gate inhibition server it
Afterwards, the state updating information that holds of first access card is received;
The deactivated cell 17, for when it is described hold state updating information be report the loss state when, by first gate inhibition
The access permission of card deactivates;
The abolishment unit 15, for when it is described hold state updating information be leave state when, by first gate inhibition
The access permission of card deactivates, and abolishes the access permission of first access card.
Optionally, Figure 20, as shown in figure 23, gate inhibition's deployment services device 1 are based on further include: audit unit 19;
The receiving unit 10 is also used to described according to first authority information, the determination from multiple gate inhibition's servers
Out before the first access point of first gate inhibition's server, the corresponding authorized application of first access card, the authorization Shen are received
Please in carry first authority information and described first and hold information, the authorized application allows described first for requesting
Prohibit corresponding first authority information of card;
The audit unit 19, for responding the authorized application, to described first hold information carry out identity audit;
The determination unit 12 is also used to allow to determine first authority information when the identity is audited and passed through
For the corresponding authority information of first access card.
Optionally, the transmission unit 14 is also used to described issue first authorization message and take to first gate inhibition
Be engaged in device when, issue described first and hold information to the first gate inhibition server.
Optionally, it is based on Figure 20, as shown in figure 24, the communication that gate inhibition's deployment services device provides access card and the information that holds connects
Mouthful;Gate inhibition's deployment services device 1 further include: call unit 110;
The receiving unit 10 is also used to the first access card of the reception corresponding first and holds after information, receives institute
It states the first access card corresponding second to swipe the card record, described second, which swipes the card, is recorded as using first access card to application system
Card-reading apparatus swipe the card behavior generation;
The call unit 110 passes through the logical of the access card and the information that holds for swiping the card record according to described second
Letter interface transfers first access card corresponding described first and holds information, and by described first hold information be sent to it is described
The card-reading apparatus of application system.
It is understood that in embodiments of the present invention, the available access card of gate inhibition's deployment services device and the information that holds
When, gate inhibition's deployment services device can integrate the access control system of more gate inhibition suppliers (gate inhibition's server) offer from unified plan
The middle determining gate inhibition's server for needing to authorize, and what is automated realizes authorization function to the access card, this avoid from gate inhibition
The processing of server directly oneself authorization, simplifies the process of gate inhibition's processing, improves the efficiency of gate inhibition's deployment.
Example IV
Under same inventive concept based on embodiment one to three, as shown in figure 25, the embodiment of the invention provides a kind of doors
Prohibit deployment services device, comprising: receiver 20, transmitter 21, processor 22 and be stored with 22 executable instruction of processor,
The memory 23 for the data that the received data and the transmitter 21 of the receiver 20 are sent, the receiver 20 and described
Transmitter 21 executes operation, the receiver 20, for receiving the first access card corresponding first dependent on the processor 22
Hold information;
When described instruction is executed by processor 22, perform the following operations:
When described first hold information be unauthorized hold information when, hold information and preset authorization according to described first
Rule obtains the first authority information corresponding with first access card;According to first authority information, taken from multiple gate inhibitions
The first access point of first gate inhibition's server is determined in business device, and realizes first access point for first access card
The authorization of access permission, generates the first authorization message, and the multiple gate inhibition's server is gate inhibition's deployment services device distribution portion
The management server of the access control system of the separate sources of administration.
The transmitter 21, for issuing first authorization message to the first gate inhibition server, for described first
Gate inhibition's server provides the access permission of first access point for first access card.
Optionally, the processor 22 is also used to the first access card of the reception corresponding first and holds after information, and
It is described according to first authority information, determined from multiple gate inhibition's servers first gate inhibition's server the first access point it
Before, when described first hold information be authorized hold information when, obtain corresponding with the second access card the second authority information,
Second access card is the described first access card authorized for holding corresponding first access point of information;By described
Two authority informations are determined as first authority information;Abolish the access permission of second access card.
Optionally, the receiver 20 is also used to described issue first authorization message and service to first gate inhibition
After device, receives the first gate inhibition server uploads corresponding with first access card first and swipe the card record;
The processor 22 is also used to swipe the card record and first authorization message according to described first, analyzes described the
The use state of one access card;When the use state of first access card is abnormal, by the gate inhibition of first access card
Permission deactivates.
Optionally, the processor 22 is also used to described receiving that the first gate inhibition server uploads with described first
Access card corresponding first is swiped the card after record, based on described first swipe the card record and preset function rule, realize described first
First function of access card, the preset function rule is for determining whether to meet the condition for starting first function.
Optionally, the receiver 20 is also used to described issue first authorization message and service to first gate inhibition
After device, the state updating information that holds of first access card is received;
The processor 22 is also used to when the state updating information that holds is to report the loss state, by first gate inhibition
The access permission of card deactivates;When the state updating information that holds is leave state, the gate inhibition of first access card is weighed
Limit deactivates, and abolishes the access permission of first access card.
Optionally, the receiver 20, be also used to it is described according to first authority information, from multiple gate inhibition's servers
Before the first access point for determining first gate inhibition's server, the corresponding authorized application of first access card is received, it is described to award
It carries first authority information and described first in power application to hold information, the authorized application is for requesting to allow described the
One access card corresponds to first authority information;
The processor 22, is also used to respond the authorized application, to described first hold information carry out identity audit;When
When the identity audit passes through, allow for first authority information to be determined as the corresponding authority information of first access card.
Optionally, the transmitter 21 is also used to described issue first authorization message and service to first gate inhibition
When device, issues described first and hold information to the first gate inhibition server.
Optionally, gate inhibition's deployment services device provides the communication interface of access card and the information that holds;
The receiver 20 is also used to the first access card of the reception corresponding first and holds after information, described in reception
First access card corresponding second is swiped the card record, and described second, which swipes the card, is recorded as using first access card to application system
Card-reading apparatus carries out behavior generation of swiping the card;
The processor 22 is also used to swipe the card record according to described second, passes through the logical of the access card and the information that holds
Letter interface transfers first access card corresponding described first and holds information, and by described first hold information be sent to it is described
The card-reading apparatus of application system.
In practical applications, above-mentioned memory can be volatile memory (volatile memory), such as at random
It accesses memory (RAM, Random-Access Memory);Or nonvolatile memory (non-volatile memory),
Such as read-only memory (ROM, Read-Only Memory), flash memory (flash memory), hard disk (HDD, Hard
Disk Drive) or solid state hard disk (SSD, Solid-State Drive);Or the combination of the memory of mentioned kind, and to
Processor provides instruction and data.
Above-mentioned processor can be application-specific IC (ASIC, Application Specific Integrated
Circuit), digital signal processor (DSP, Digital Signal Processor), digital signal processing device (DSPD,
Digital Signal Processing Device), programmable logic device (PLD, Programmable Logic
Device), field programmable gate array (FPGA, Field Programmable Gate Array), central processing unit (CPU,
Central Processing Unit), controller, at least one of microcontroller, microprocessor.It is to be appreciated that for
Different equipment, can also be to be other for realizing the electronic device of above-mentioned processor function, and the embodiment of the present invention is not made specifically
It limits.
Embodiment five
Each functional module in the present embodiment can integrate in one processing unit, and it is independent to be also possible to each unit
It is physically present, can also be integrated in one unit with two or more units.Above-mentioned integrated unit both can be using hard
The form of part is realized, can also be realized in the form of software function module.
If the integrated unit realizes that being not intended as independent product is sold in the form of software function module
Or in use, can store in a computer readable storage medium, based on this understanding, the technical side of the present embodiment
Substantially all or part of the part that contributes to existing technology or the technical solution can be produced case in other words with software
The form of product embodies, which is stored in a computer readable storage medium, including some instructions
With so that a computer equipment (can be personal computer, server or the network equipment etc.) or (place processor
Manage device) execute the present embodiment the method all or part of the steps.And storage medium above-mentioned include: USB flash disk, mobile hard disk,
The various media that can store program code such as read-only memory, random access memory, magnetic or disk.
The embodiment of the invention provides a kind of computer readable storage mediums, are stored thereon with computer program, are applied to
In gate inhibition's deployment services device, which is executed as described in embodiment one and embodiment three by the processor on gate inhibition's deployment services device
Method.
The embodiment of the invention provides a kind of computer readable storage mediums, are stored thereon with computer program, are applied to
In gate inhibition's server, which is executed the method as described in claim embodiment two by the processor on gate inhibition's server.
It should be understood by those skilled in the art that, the embodiment of the present invention can provide as method, system or computer program
Product.Therefore, the shape of hardware embodiment, software implementation or embodiment combining software and hardware aspects can be used in the present invention
Formula.Moreover, the present invention, which can be used, can use storage in the computer that one or more wherein includes computer usable program code
The form for the computer program product implemented on medium (including but not limited to magnetic disk storage and optical memory etc.).
The present invention be referring to according to the method for the embodiment of the present invention, the process of equipment (system) and computer program product
Figure and/or block diagram describe.It should be understood that every one stream in flowchart and/or the block diagram can be realized by computer program instructions
The combination of process and/or box in journey and/or box and flowchart and/or the block diagram.It can provide these computer programs
Instruct the processor of general purpose computer, special purpose computer, Embedded Processor or other programmable data processing devices to produce
A raw machine, so that being generated by the instruction that computer or the processor of other programmable data processing devices execute for real
The device for the function of being specified in present one or more flows of the flowchart and/or one or more blocks of the block diagram.
These computer program instructions, which may also be stored in, is able to guide computer or other programmable data processing devices with spy
Determine in the computer-readable memory that mode works, so that it includes referring to that instruction stored in the computer readable memory, which generates,
Enable the manufacture of device, the command device realize in one box of one or more flows of the flowchart and/or block diagram or
The function of being specified in multiple boxes.
These computer program instructions also can be loaded onto a computer or other programmable data processing device, so that counting
Series of operation steps are executed on calculation machine or other programmable devices to generate computer implemented processing, thus in computer or
The instruction executed on other programmable devices is provided for realizing in one or more flows of the flowchart and/or block diagram one
The step of function of being specified in a box or multiple boxes.
The foregoing is only a preferred embodiment of the present invention, is not intended to limit the scope of the present invention.
Claims (15)
1. a kind of gate inhibition's dispositions method, which is characterized in that be applied in gate inhibition's deployment services device, comprising:
The first access card corresponding first is received to hold information;
When described first hold information be unauthorized hold information when, advised according to the described first hold information and preset authorization
Then, the first authority information corresponding with first access card is obtained;
According to first authority information, the first access point of first gate inhibition's server is determined from multiple gate inhibition's servers,
And the authorization of the access permission of first access point is realized for first access card, and the first authorization message is generated, it is described more
A gate inhibition's server is the management server of the access control system of the separate sources of gate inhibition's deployment services device distribution deployment;
First authorization message is issued to the first gate inhibition server, is described first for the first gate inhibition server
Prohibit card and the access permission of first access point is provided.
2. the information the method according to claim 1, wherein the first access card of the reception corresponding first holds
Later, and it is described according to first authority information, the first of first gate inhibition's server is determined from multiple gate inhibition's servers
Before access point, the method also includes:
When described first hold information be authorized hold information when, obtain corresponding with the second access card the second permission and believe
Breath, second access card are the described first access card authorized for holding corresponding first access point of information;
Second authority information is determined as first authority information;
Abolish the access permission of second access card.
3. method according to claim 1 or 2, which is characterized in that described to issue first authorization message to described
After one gate inhibition's server, the method also includes:
The first gate inhibition server uploads corresponding with first access card first is received to swipe the card record;
It swipes the card and records and first authorization message, the use state of analysis first access card according to described first;
When the use state of first access card is abnormal, the access permission of first access card is deactivated.
4. according to the method described in claim 3, it is characterized in that, described receiving that the first gate inhibition server uploads with institute
The first access card corresponding first is stated to swipe the card after record, the method also includes:
It swipes the card record and preset function rule based on described first, realizes the first function of first access card, it is described default
Function rule is for determining whether to meet the condition for starting first function.
5. the method according to claim 1, wherein described issue first authorization message to described first
After prohibiting server, the method also includes:
Receive the state updating information that holds of first access card;
When the state updating information that holds is to report the loss state, the access permission of first access card is deactivated;
When the state updating information that holds is leave state, the access permission of first access card is deactivated, and abolishes
The access permission of first access card.
6. the method according to claim 1, wherein described according to first authority information, from multiple gate inhibitions
Before the first access point for determining first gate inhibition's server in server, the method also includes:
The corresponding authorized application of first access card is received, first authority information and described is carried in the authorized application
First holds information, and the authorized application allows first access card to correspond to first authority information for requesting;
Respond the authorized application, to described first hold information carry out identity audit;
When identity audit passes through, allow for first authority information to be determined as the corresponding permission of first access card
Information.
7. the method according to claim 1, wherein described issue first authorization message to described first
When prohibiting server, the method also includes:
It issues described first and holds information to the first gate inhibition server.
8. the method according to claim 1, wherein gate inhibition's deployment services device provides access card and the information that holds
Communication interface, the first access card of the reception corresponding first hold after information, the method also includes:
It receives first access card corresponding second to swipe the card record, described second, which swipes the card, is recorded as using first access card
Behavior generation of swiping the card is carried out to the card-reading apparatus of application system;
It swipes the card record according to described second, first access card is transferred by the communication interface of the access card and the information that holds
Corresponding described first holds information, and described first information that holds is sent to the card-reading apparatus of the application system.
9. a kind of gate inhibition's deployment services device characterized by comprising
Receiving unit holds information for receiving the first access card corresponding first;
Acquiring unit, for when described first hold information be unauthorized hold information when, hold information according to described first
With preset authorization rule, the first authority information corresponding with first access card is obtained;
Determination unit, for determining first gate inhibition's server from multiple gate inhibition's servers according to first authority information
The first access point;
Generation unit, the authorization of the access permission for realizing first access point for first access card generate first
Authorization message, the multiple gate inhibition's server are the access control system of the separate sources of gate inhibition's deployment services device distribution deployment
Management server;
Transmission unit is serviced for issuing first authorization message to the first gate inhibition server for first gate inhibition
Device provides the access permission of first access point for first access card.
10. gate inhibition's deployment services device according to claim 9, which is characterized in that gate inhibition's deployment services device further include:
Abolish unit;
The acquiring unit is also used to the first access card of the reception corresponding first and holds after information, and described according to institute
The first authority information is stated, before the first access point for determining first gate inhibition's server in multiple gate inhibition's servers, when described
First hold information be authorized hold information when, obtain corresponding with the second access card the second authority information, described second
Access card is the described first access card authorized for holding corresponding first access point of information;
The determination unit is also used to second authority information being determined as first authority information;
The abolishment unit, for abolishing the access permission of second access card.
11. gate inhibition's deployment services device according to claim 9 or 10, which is characterized in that gate inhibition's deployment services device is also
It include: analytical unit and deactivated cell;
The receiving unit, be also used to it is described issue first authorization message to the first gate inhibition server after, receive
What the first gate inhibition server uploaded corresponding with first access card first swipes the card record;
The analytical unit records and first authorization message, analysis first gate inhibition for swiping the card according to described first
The use state of card;
The deactivated cell, for when the use state of first access card is abnormal, by the door of first access card
Prohibit permission to deactivate.
12. gate inhibition's deployment services device according to claim 11, which is characterized in that gate inhibition's deployment services device also wraps
It includes: realizing unit;
The realization unit, for receive that the first gate inhibition server uploads corresponding with first access card the
One swipes the card after record, swipes the card record and preset function rule based on described first, realizes the first function of first access card
Can, the preset function rule is for determining whether to meet the condition for starting first function.
13. gate inhibition's deployment services device according to claim 9, which is characterized in that gate inhibition's deployment unit further include: stop
With unit and abolish unit;
The receiving unit, be also used to it is described issue first authorization message to the first gate inhibition server after, receive
The state updating information that holds of first access card;
The deactivated cell, for when it is described hold state updating information be report the loss state when, by the door of first access card
Prohibit permission to deactivate;
The abolishment unit, for when it is described hold state updating information be leave state when, by the door of first access card
Prohibit permission to deactivate, and abolishes the access permission of first access card.
14. gate inhibition's deployment services device according to claim 9, which is characterized in that gate inhibition's deployment services device further include:
Audit unit;
The receiving unit, is also used to described according to first authority information, determines first from multiple gate inhibition's servers
Before first access point of gate inhibition's server, the corresponding authorized application of first access card is received, is taken in the authorized application
It holds information with first authority information and described first, the authorized application allows first access card pair for requesting
Answer first authority information;
The audit unit, for responding the authorized application, to described first hold information carry out identity audit;
The determination unit is also used to allow for first authority information to be determined as described when the identity is audited and passed through
The corresponding authority information of first access card.
15. gate inhibition's deployment services device according to claim 9, which is characterized in that gate inhibition's deployment services device provides access card
With the communication interface for the information that holds;Gate inhibition's deployment services device further include: call unit;
The receiving unit is also used to the first access card of the reception corresponding first and holds after information, receives described first
Access card corresponding second is swiped the card record, and described second, which swipes the card, is recorded as card reading using first access card to application system
Equipment carries out behavior generation of swiping the card;
The call unit passes through the communication interface of the access card and the information that holds for swiping the card record according to described second
It transfers first access card corresponding described first to hold information, and described first information that holds is sent to the application system
The card-reading apparatus of system.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710356676.8A CN108961475B (en) | 2017-05-19 | 2017-05-19 | Access control deployment method and access control deployment server |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN201710356676.8A CN108961475B (en) | 2017-05-19 | 2017-05-19 | Access control deployment method and access control deployment server |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN108961475A true CN108961475A (en) | 2018-12-07 |
| CN108961475B CN108961475B (en) | 2022-01-07 |
Family
ID=64461559
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN201710356676.8A Active CN108961475B (en) | 2017-05-19 | 2017-05-19 | Access control deployment method and access control deployment server |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN108961475B (en) |
Cited By (17)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110070636A (en) * | 2019-04-23 | 2019-07-30 | 安徽致远慧联电子科技有限公司 | Work attendance management system and management method based on all-purpose card two dimensional code |
| CN110223432A (en) * | 2019-06-25 | 2019-09-10 | 广州佳都数据服务有限公司 | Access control management method, device, server and storage medium |
| CN110460664A (en) * | 2019-08-13 | 2019-11-15 | 深圳市商汤科技有限公司 | Information synchronization method and device, electronic equipment and storage medium |
| CN110599659A (en) * | 2019-10-12 | 2019-12-20 | 数浪信息科技(上海)有限公司 | Access control permission synchronization method and device |
| CN110969740A (en) * | 2019-12-12 | 2020-04-07 | 浩云科技股份有限公司 | Access method of access control management system to different types of access control equipment and access control system |
| CN111210551A (en) * | 2020-01-13 | 2020-05-29 | 中国建设银行股份有限公司 | Access control system, access control information issuing method, device, server and storage medium |
| CN111260833A (en) * | 2020-01-16 | 2020-06-09 | 广州康行信息技术有限公司 | Binding and management method and device for access control card |
| CN111741103A (en) * | 2020-06-18 | 2020-10-02 | 行吟信息科技(武汉)有限公司 | Access control data synchronization method and system |
| CN112053485A (en) * | 2020-09-08 | 2020-12-08 | 上海善一智能科技有限公司 | Department intelligent authority distribution system |
| CN112070940A (en) * | 2020-08-05 | 2020-12-11 | 日立楼宇技术(广州)有限公司 | Access control authorization method, access control release method, device, access control controller and medium |
| CN112340555A (en) * | 2020-10-22 | 2021-02-09 | 日立楼宇技术(广州)有限公司 | Elevator authorization method, elevator calling method, system, device and storage medium |
| CN112769940A (en) * | 2021-01-13 | 2021-05-07 | 厦门熵基科技有限公司 | Data synchronization method, device, equipment and medium for multi-access control system |
| CN112884957A (en) * | 2021-01-14 | 2021-06-01 | 广西筑波智慧科技有限公司 | Campus one-card identity code generation system and method |
| CN112950833A (en) * | 2019-12-11 | 2021-06-11 | 浙江宇视科技有限公司 | Authorization method, device, equipment and storage medium of access control equipment |
| CN114067473A (en) * | 2020-08-07 | 2022-02-18 | 比亚迪股份有限公司 | Access control authority management method, device and equipment in comprehensive scheduling system |
| CN114445949A (en) * | 2021-12-31 | 2022-05-06 | 珠海华发新科技投资控股有限公司 | Bluetooth-based access control system |
| CN116311641A (en) * | 2023-05-17 | 2023-06-23 | 无锡市新发智联节能有限公司 | Intelligent operation and maintenance system and method based on park management |
Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101667309A (en) * | 2009-09-25 | 2010-03-10 | 广东高新兴通信股份有限公司 | Access management system based on access control and management method thereof |
| CN102542645A (en) * | 2012-01-13 | 2012-07-04 | 中科华核电技术研究院有限公司 | Entrance guard authentication method and system |
| CN102930717A (en) * | 2012-11-21 | 2013-02-13 | 安徽富煌和利时科技有限公司 | Bus information release system and electronic bus-stop board system matched with same |
| CN103390175A (en) * | 2013-06-26 | 2013-11-13 | 上海慧升智能科技有限公司 | Card reissuing and changing method |
| CN103546294A (en) * | 2013-10-10 | 2014-01-29 | 小米科技有限责任公司 | Entrance guard authorization method, entrance guard authorization device and entrance guard authorization equipment |
| CN104408810A (en) * | 2014-12-19 | 2015-03-11 | 深圳市科漫达智能管理科技有限公司 | Distribution method and distribution system of universal entrance guard card |
| CN106204841A (en) * | 2016-07-07 | 2016-12-07 | 北京英贝思科技有限公司 | A kind of intelligent access control system and control method thereof |
-
2017
- 2017-05-19 CN CN201710356676.8A patent/CN108961475B/en active Active
Patent Citations (7)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101667309A (en) * | 2009-09-25 | 2010-03-10 | 广东高新兴通信股份有限公司 | Access management system based on access control and management method thereof |
| CN102542645A (en) * | 2012-01-13 | 2012-07-04 | 中科华核电技术研究院有限公司 | Entrance guard authentication method and system |
| CN102930717A (en) * | 2012-11-21 | 2013-02-13 | 安徽富煌和利时科技有限公司 | Bus information release system and electronic bus-stop board system matched with same |
| CN103390175A (en) * | 2013-06-26 | 2013-11-13 | 上海慧升智能科技有限公司 | Card reissuing and changing method |
| CN103546294A (en) * | 2013-10-10 | 2014-01-29 | 小米科技有限责任公司 | Entrance guard authorization method, entrance guard authorization device and entrance guard authorization equipment |
| CN104408810A (en) * | 2014-12-19 | 2015-03-11 | 深圳市科漫达智能管理科技有限公司 | Distribution method and distribution system of universal entrance guard card |
| CN106204841A (en) * | 2016-07-07 | 2016-12-07 | 北京英贝思科技有限公司 | A kind of intelligent access control system and control method thereof |
Cited By (21)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN110070636A (en) * | 2019-04-23 | 2019-07-30 | 安徽致远慧联电子科技有限公司 | Work attendance management system and management method based on all-purpose card two dimensional code |
| CN110223432A (en) * | 2019-06-25 | 2019-09-10 | 广州佳都数据服务有限公司 | Access control management method, device, server and storage medium |
| CN110460664A (en) * | 2019-08-13 | 2019-11-15 | 深圳市商汤科技有限公司 | Information synchronization method and device, electronic equipment and storage medium |
| CN110599659A (en) * | 2019-10-12 | 2019-12-20 | 数浪信息科技(上海)有限公司 | Access control permission synchronization method and device |
| CN112950833A (en) * | 2019-12-11 | 2021-06-11 | 浙江宇视科技有限公司 | Authorization method, device, equipment and storage medium of access control equipment |
| CN112950833B (en) * | 2019-12-11 | 2022-08-30 | 浙江宇视科技有限公司 | Authorization method, device, equipment and storage medium of access control equipment |
| CN110969740A (en) * | 2019-12-12 | 2020-04-07 | 浩云科技股份有限公司 | Access method of access control management system to different types of access control equipment and access control system |
| CN111210551A (en) * | 2020-01-13 | 2020-05-29 | 中国建设银行股份有限公司 | Access control system, access control information issuing method, device, server and storage medium |
| CN111260833A (en) * | 2020-01-16 | 2020-06-09 | 广州康行信息技术有限公司 | Binding and management method and device for access control card |
| CN111741103A (en) * | 2020-06-18 | 2020-10-02 | 行吟信息科技(武汉)有限公司 | Access control data synchronization method and system |
| CN112070940A (en) * | 2020-08-05 | 2020-12-11 | 日立楼宇技术(广州)有限公司 | Access control authorization method, access control release method, device, access control controller and medium |
| CN114067473B (en) * | 2020-08-07 | 2023-01-06 | 比亚迪股份有限公司 | Access control authority management method, device and equipment in comprehensive scheduling system |
| CN114067473A (en) * | 2020-08-07 | 2022-02-18 | 比亚迪股份有限公司 | Access control authority management method, device and equipment in comprehensive scheduling system |
| CN112053485A (en) * | 2020-09-08 | 2020-12-08 | 上海善一智能科技有限公司 | Department intelligent authority distribution system |
| CN112340555A (en) * | 2020-10-22 | 2021-02-09 | 日立楼宇技术(广州)有限公司 | Elevator authorization method, elevator calling method, system, device and storage medium |
| CN112769940A (en) * | 2021-01-13 | 2021-05-07 | 厦门熵基科技有限公司 | Data synchronization method, device, equipment and medium for multi-access control system |
| CN112884957A (en) * | 2021-01-14 | 2021-06-01 | 广西筑波智慧科技有限公司 | Campus one-card identity code generation system and method |
| CN114445949A (en) * | 2021-12-31 | 2022-05-06 | 珠海华发新科技投资控股有限公司 | Bluetooth-based access control system |
| CN114445949B (en) * | 2021-12-31 | 2024-02-13 | 珠海华发数智技术有限公司 | Bluetooth-based access control system |
| CN116311641A (en) * | 2023-05-17 | 2023-06-23 | 无锡市新发智联节能有限公司 | Intelligent operation and maintenance system and method based on park management |
| CN116311641B (en) * | 2023-05-17 | 2023-08-01 | 无锡市新发智联节能有限公司 | Intelligent operation and maintenance system and method based on park management |
Also Published As
| Publication number | Publication date |
|---|---|
| CN108961475B (en) | 2022-01-07 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN108961475A (en) | A kind of gate inhibition's dispositions method and gate inhibition's deployment services device | |
| US7770212B2 (en) | System and method for privilege delegation and control | |
| CN109272606B (en) | Intelligent lock supervision equipment and method based on block chain and storage medium | |
| US20220277302A1 (en) | Cryptoasset custodial system with proof-of-stake blockchain support | |
| CN103441986B (en) | Data resource security control method in thin client mode | |
| EP3997606B1 (en) | Cryptoasset custodial system with custom logic | |
| CN109951498A (en) | A kind of block chain access control method and device based on ciphertext policy ABE encryption | |
| CN110162936A (en) | A kind of use authorization method of software content | |
| CN109710823A (en) | Archive management method, file administration network and electronic equipment based on block chain | |
| CN109729168A (en) | A kind of data share exchange system and method based on block chain | |
| CN106534199B (en) | Distributed system certification and rights management platform under big data environment based on XACML and SAML | |
| CN109241753A (en) | A kind of data sharing method and system based on block chain | |
| CN111553767B (en) | Shared house leasing system, method and storage medium based on block chain | |
| CN110213246A (en) | A kind of wide area multiple-factor identity authorization system | |
| CN108881167A (en) | A kind of intelligent contract of finite field block catenary system | |
| TW200533138A (en) | Apparatus, system, and method for authorized remote access to a target system | |
| CN108712389B (en) | Intelligent lock system | |
| DE102004025084A1 (en) | Personal authentication device and personal authentication system and personal authentication method | |
| CN103327084A (en) | Public and private hybrid distributed cloud storage system and cloud storage method | |
| CN110175441A (en) | Data managing method, device, equipment and storage medium based on bio-identification | |
| CN109728903A (en) | A kind of block chain weak center password authorization method using properties secret | |
| CN108369614A (en) | User authen method and system for carrying out the process | |
| CN110580759A (en) | Manageable single-machine lock, realization method thereof and centralized single-machine lock management system | |
| Koulolias et al. | STORK e-privacy and security | |
| CN108960788A (en) | A kind of high reliability all-in-one card platform for biogas service system |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |