CN114567477B - Multi-party collaborative authority management method, device, terminal and storage medium - Google Patents
Multi-party collaborative authority management method, device, terminal and storage medium Download PDFInfo
- Publication number
- CN114567477B CN114567477B CN202210174269.6A CN202210174269A CN114567477B CN 114567477 B CN114567477 B CN 114567477B CN 202210174269 A CN202210174269 A CN 202210174269A CN 114567477 B CN114567477 B CN 114567477B
- Authority
- CN
- China
- Prior art keywords
- materials
- access
- material access
- owner
- original
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000007726 management method Methods 0.000 title claims abstract description 63
- 238000000034 method Methods 0.000 claims abstract description 15
- 230000006399 behavior Effects 0.000 claims description 29
- 238000012545 processing Methods 0.000 claims description 16
- 230000004044 response Effects 0.000 claims description 13
- 238000004590 computer program Methods 0.000 claims description 12
- 230000000694 effects Effects 0.000 abstract description 3
- 238000004891 communication Methods 0.000 description 3
- 238000010586 diagram Methods 0.000 description 2
- 238000005516 engineering process Methods 0.000 description 2
- 230000006870 function Effects 0.000 description 2
- 238000011160 research Methods 0.000 description 2
- 230000004888 barrier function Effects 0.000 description 1
- 238000013500 data storage Methods 0.000 description 1
- 230000007774 longterm Effects 0.000 description 1
- 230000003287 optical effect Effects 0.000 description 1
- 230000008569 process Effects 0.000 description 1
- 238000012546 transfer Methods 0.000 description 1
Classifications
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
- H04L63/105—Multiple levels of security
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
Landscapes
- Engineering & Computer Science (AREA)
- Computer Security & Cryptography (AREA)
- Computer Hardware Design (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Storage Device Security (AREA)
- Management, Administration, Business Operations System, And Electronic Commerce (AREA)
Abstract
The invention discloses a multi-party collaborative authority management method, a device, a terminal and a storage medium, wherein the method comprises the following steps: dividing a plurality of material access terminals into different roles and setting corresponding material access rights; receiving original materials, classifying, obtaining multiple types of refined materials, and determining the materials of the refined materials; and responding to the material access request, and controlling the material access behavior according to the material access authority. The invention greatly improves the flexibility of the authority management, greatly reduces the cost of the authority configuration and saves the system resources through a standardized authority distribution mode. Meanwhile, the rights are refined into the materials, so that each material has a set of independent rights management logic, the data access efficiency is greatly improved, the refined management and control of the rights of the materials are realized, and the management effect is ensured.
Description
Technical Field
The invention belongs to a rights management scheme, in particular to a multiparty collaborative rights management method, device, terminal and storage medium used in enterprise-level application service, and relates to the technical field of computers.
Background
Rights management refers to the fact that users can access and only access their own authorized resources according to security rules or security policies set by the system. In enterprise-level application services, the rights management scheme can build a security barrier for the enterprise system; conversely, once an enterprise system with a vulnerability is attacked, it will cause immeasurable loss to the enterprise. As such, technical solutions related to rights management are receiving increasing attention from enterprises.
In the existing various rights management schemes, different modules and data which can be accessed by members of different levels are required to be specified according to security rules configured in the background, so that authorized users can normally access the authorized data and intercept unauthorized user access. Meanwhile, the granularity of authority control is directly influenced by data refinement in the scheme. For the actual rights management scene of the enterprise, different units (including departments, dimensions, members and the like) have corresponding rights behaviors for different materials, and the units without rights need to apply to the owners of the materials when the materials are called.
However, the above solution gradually exposes the following drawbacks during long-term application. Firstly, under the conditions of large-scale enterprise and large enterprise personnel, the cost of authority configuration is higher and higher, which is unfavorable for popularization and application of enterprises. Secondly, each material needs to determine an owner, and the unauthorized unit needs to apply for the material owner to access, so that the whole access process is quite tedious and low in efficiency. Finally, the granularity of authority control is coarse, accurate control on data cannot be realized, and a series of unauthorized problems that a visitor with viewing authority can view all data and the like often occur.
In summary, if a brand new authority management scheme with more flexibility and capability of effectively reducing errors can be provided, the efficiency and the level of data processing in an enterprise are improved greatly, and various follow-up works of the enterprise are ensured to be developed smoothly.
Disclosure of Invention
In view of the above-mentioned drawbacks of the prior art, an object of the present invention is to provide a method, an apparatus, a terminal and a storage medium for managing rights in cooperation with multiple parties, which are used in an enterprise-level application service, specifically as follows.
A rights management method for multiparty collaboration includes:
dividing a plurality of material access terminals into different roles according to the access mode to the materials, and setting corresponding material access rights for the material access terminals with different roles;
receiving original materials from a material uploading end, classifying the original materials according to material types to obtain multi-type refined materials, and determining the material owner of each type of refined materials;
and responding to a material access request from the material access terminal, controlling the material access behavior of the material access terminal according to the material access authority of the material access terminal, and if the material access terminal which sends the material access request does not have the corresponding material access authority, sending an application to the material owner, and allowing the material access behavior if the application passes.
Preferably, the dividing the multiple material access terminals into different roles according to the access mode to the materials, and setting corresponding material access rights for the material access terminals with different roles includes:
classifying the groups of the plurality of material access terminals by taking the enterprise dimension as a standard to form a plurality of material access terminal groups, wherein the enterprise dimension comprises a personnel dimension and a department/group dimension;
dividing a plurality of material access terminals into different roles according to access modes to materials, wherein the roles comprise viewers, users and collaborators, and setting corresponding material access rights aiming at the material access terminals of the different roles, wherein the material access rights of the viewers comprise viewing originals and viewing attachments, the material access rights of the users comprise viewing originals, viewing attachments, downloading originals and downloading attachments, and the material access rights of the collaborators comprise viewing originals, viewing attachments, downloading originals, downloading attachments, editing materials, deleting materials and sharing materials.
Preferably, the receiving the original material from the material uploading end classifies the original material according to the material type to obtain multiple types of refined materials, and determining the material owner of each type of the refined materials includes:
the method comprises the steps of receiving original materials from a material uploading end, classifying the original materials according to material types to obtain multi-type refined materials, wherein the multi-type refined materials comprise enterprise full-member universal materials, individual management and control type materials, department/group private materials, enterprise inner/outer full-member visible materials, department management and control type materials and custom authority materials;
and identifying the material uploading party of each type of the refined material as a material owner, wherein the material owner has owner access rights to the material, and the owner access rights comprise original viewing, attachment viewing, original downloading, attachment downloading, material editing, material deleting and material sharing.
Preferably, the responding to the material access request from the material access terminal controls the material access behavior of the material access terminal according to the material access authority of the material access terminal, if the material access terminal which sends the material access request does not have the corresponding material access authority, an application is sent to the owner of the material, and if the application passes, the material access behavior is allowed, including:
responding to a material access request from the material access terminal, searching all the thinned materials corresponding to the material access request in an ES searching mode, combining the thinned materials, judging whether the material access terminal which sends the material access request has corresponding material access rights or not, and if so, allowing the material access terminal to execute material access behaviors;
if the judging result is that the material access request is not transmitted to the material owner, the material owner carries out approval, if the approval result is not passed, the material access request is refuted, and if the approval result is passed, the material access terminal is allowed to execute the material access behavior.
A rights management apparatus for a multi-party collaboration, comprising:
the system comprises an access terminal authority setting module, a material access terminal processing module and a material processing module, wherein the access terminal authority setting module is configured to divide a plurality of material access terminals into different roles according to an access mode to materials, and set corresponding material access authorities for the material access terminals with different roles;
the system comprises a material type dividing module, a material processing module and a material processing module, wherein the material type dividing module is configured to receive original materials from a material uploading end, classify the original materials according to material types to obtain multi-type refined materials, and determine the material owner of each type of the refined materials;
the access request response module is configured to respond to a material access request from the material access terminal, control the material access behavior of the material access terminal according to the material access authority of the material access terminal, and if the material access terminal which sends the material access request does not have the corresponding material access authority, send an application to the material owner, and allow the material access behavior if the application passes.
Preferably, the access terminal authority setting module includes:
the access terminal group classifying unit is configured to classify a plurality of material access terminals into groups by taking an enterprise dimension as a standard to form a plurality of material access terminal groups, wherein the enterprise dimension comprises a personnel dimension and a department/group dimension;
the system comprises an access terminal authority setting unit, a storage unit and a storage unit, wherein the access terminal authority setting unit is configured to divide a plurality of material access terminals into different roles according to access modes to materials, the roles comprise viewers, users and collaborators, and corresponding material access authorities are set for the material access terminals of the different roles, wherein the material access authorities of the viewers comprise viewing originals and viewing attachments, the material access authorities of the users comprise viewing originals, viewing attachments, downloading originals and downloading attachments, and the material access authorities of the collaborators comprise viewing originals, viewing attachments, downloading originals, downloading attachments, editing materials, deleting materials and sharing materials.
Preferably, the material type dividing module includes:
the system comprises an original material refinement unit, a material uploading unit and a material processing unit, wherein the original material refinement unit is configured to receive original materials from the material uploading end, classify the original materials according to material types to obtain multi-type refined materials, and the multi-type refined materials comprise enterprise full-member universal materials, personal management and control type materials, department/group private materials, enterprise inner/outer full-member visible materials, department management and control type materials and custom authority materials;
and the material owner determining unit is configured to identify each type of material uploading party of the refined materials as a material owner, wherein the material owner has owner access rights to the materials, and the owner access rights comprise original viewing, attachment viewing, original downloading, attachment downloading, material editing, material deleting and material sharing.
Preferably, the access request response module includes:
an access request preliminary response unit, configured to respond to a material access request from the material access terminal, search all the thinned materials corresponding to the material access request by using an ES search mode, combine the thinned materials, determine whether the material access terminal sending the material access request has a corresponding material access right, and if yes, allow the material access terminal to execute a material access behavior;
and the access request secondary response unit is configured to forward the material access request to the material owner if the judgment result is that the material access request is not transmitted, the material owner performs approval, if the approval result is not passed, the material access request is refuted, and if the approval result is passed, the material access terminal is allowed to execute the material access behavior.
A terminal comprising a memory, a processor and a computer program stored in the memory and executable on the processor, the processor implementing steps in a multi-party collaborative rights management method as described above when the computer program is executed.
A computer readable storage medium storing a computer program which when executed by a processor performs steps in a multi-party collaborative rights management method as described above.
The advantages of the invention are mainly embodied in the following aspects:
according to the multiparty collaborative rights management method provided by the invention, the flexibility of rights management is greatly improved through a standardized rights distribution mode, the cost of rights configuration is greatly reduced, and the system resources are saved. Meanwhile, the method refines the rights into the materials, so that each material has a set of independent rights management logic, the data access efficiency is greatly improved, the refined management and control of the rights of the materials are realized, the condition of frequent visitor override operation in the prior art is avoided, and the rights management effect is ensured.
Corresponding to the method, the multiparty collaborative rights management device, the terminal and the storage medium provided by the invention are suitable for most enterprise-level application services at present, fully meet the requirements of enterprises on rights management, and enhance the overall practicability of the system. Moreover, the hardware part has higher suitability and compatibility, and can be practically applied to the actual authority management scene of enterprises.
In addition, the invention provides references for other schemes related to the data access authority management technology, and can be used for expansion and deep research based on the references, and the scheme has very wide application prospect as a whole.
The following detailed description of the embodiments of the present invention is provided with reference to the accompanying drawings, so that the technical scheme of the present invention can be understood and mastered more easily.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of this application, are included to provide a further understanding of the application and to provide a further understanding of the application with regard to the other features, objects and advantages of the application. The drawings of the illustrative embodiments of the present application and their descriptions are for the purpose of illustrating the present application and are not to be construed as unduly limiting the present application. In the drawings:
FIG. 1 is a flowchart of an implementation of a rights management method for multiparty collaboration provided in an embodiment of the present invention;
fig. 2 is a schematic structural diagram of a rights management device cooperated with multiple parties according to an embodiment of the present invention;
fig. 3 is a schematic diagram of a terminal according to an embodiment of the present invention.
Detailed Description
The invention discloses a multiparty collaborative authority management method, a multiparty collaborative authority management device, a multiparty collaborative authority management terminal and a multiparty collaborative authority management storage medium used in enterprise-level application services.
In one aspect, the overall flow of the rights management method for multiparty collaboration of the present invention is shown in fig. 1, and the method includes the following steps.
S1, dividing a plurality of material access terminals into different roles according to access modes to materials, and setting corresponding material access rights for the material access terminals with different roles; this step can be refined to the following procedure.
S11, classifying the groups of the plurality of material access terminals by taking the enterprise dimension as a standard to form a plurality of material access terminal groups, wherein the enterprise dimension comprises a personnel dimension and a department/group dimension;
s12, dividing a plurality of material access ends into different roles according to access modes to materials, wherein the roles comprise viewers, users and collaborators, and setting corresponding material access rights aiming at the material access ends of the different roles, wherein the material access rights of the viewers comprise viewing originals and viewing attachments, the material access rights of the users comprise viewing originals, viewing attachments, downloading originals and downloading attachments, and the material access rights of the collaborators comprise viewing originals, viewing attachments, downloading originals, downloading attachments, editing materials, deleting materials and sharing materials.
S2, receiving original materials from a material uploading end, classifying the original materials according to material types to obtain multi-type refined materials, and determining the material owner of each type of refined materials; this step can be refined to the following procedure.
S21, receiving original materials from a material uploading end, classifying the original materials according to material types to obtain multi-type refined materials, wherein the multi-type refined materials comprise enterprise full-member universal materials, personal management and control type materials, department/group private materials, enterprise inner/outer full-member visible materials, department management and control type materials and custom authority materials;
s22, identifying the material uploading party of each type of the refined materials as a material owner, wherein the material owner has owner access rights to the materials, and the owner access rights are similar to the material access rights of the collaborators, and the method also comprises the steps of checking originals, checking attachments, downloading originals, downloading attachments, editing materials, deleting materials and sharing materials.
S3, responding to a material access request from the material access terminal, controlling the material access behavior of the material access terminal according to the material access authority of the material access terminal, and if the material access terminal which sends the material access request does not have the corresponding material access authority, sending an application to the owner of the material, and allowing the material access behavior if the application passes; this step can be refined to the following procedure.
S31, responding to a material access request from the material access terminal, searching all the thinned materials corresponding to the material access request in an ES searching mode, combining the thinned materials, judging whether the material access terminal which sends the material access request has corresponding material access rights or not, and if so, allowing the material access terminal to execute material access behaviors;
s32, if the judgment result is that the material access request is not transmitted to the material owner in a mail mode, the material owner carries out approval, if the approval result is not passed, the material access request is also refuted in a mail mode, and if the approval result is passed, the result is fed back to the material access terminal in a mail mode, and the material access terminal is allowed to execute the material access behavior.
In summary, according to the multiparty collaborative rights management method provided by the invention, the flexibility of rights management is greatly improved through a standardized rights distribution mode, the cost of rights configuration is greatly reduced, and the system resources are saved. Meanwhile, the method refines the rights into the materials, so that each material has a set of independent rights management logic, the data access efficiency is greatly improved, the refined management and control of the rights of the materials are realized, the condition of frequent visitor override operation in the prior art is avoided, and the rights management effect is ensured.
On the other hand, the rights management device cooperated by multiple parties of the invention has the overall structure shown in fig. 2 and comprises:
the system comprises an access terminal authority setting module, a material access terminal processing module and a material processing module, wherein the access terminal authority setting module is configured to divide a plurality of material access terminals into different roles according to an access mode to materials, and set corresponding material access authorities for the material access terminals with different roles;
the system comprises a material type dividing module, a material processing module and a material processing module, wherein the material type dividing module is configured to receive original materials from a material uploading end, classify the original materials according to material types to obtain multi-type refined materials, and determine the material owner of each type of the refined materials;
the access request response module is configured to respond to a material access request from the material access terminal, control the material access behavior of the material access terminal according to the material access authority of the material access terminal, and if the material access terminal which sends the material access request does not have the corresponding material access authority, send an application to the material owner, and allow the material access behavior if the application passes.
The access end authority setting module comprises:
the access terminal group classifying unit is configured to classify a plurality of material access terminals into groups by taking an enterprise dimension as a standard to form a plurality of material access terminal groups, wherein the enterprise dimension comprises a personnel dimension and a department/group dimension;
the system comprises an access terminal authority setting unit, a storage unit and a storage unit, wherein the access terminal authority setting unit is configured to divide a plurality of material access terminals into different roles according to access modes to materials, the roles comprise viewers, users and collaborators, and corresponding material access authorities are set for the material access terminals of the different roles, wherein the material access authorities of the viewers comprise viewing originals and viewing attachments, the material access authorities of the users comprise viewing originals, viewing attachments, downloading originals and downloading attachments, and the material access authorities of the collaborators comprise viewing originals, viewing attachments, downloading originals, downloading attachments, editing materials, deleting materials and sharing materials.
The material type dividing module comprises:
the system comprises an original material refinement unit, a material uploading unit and a material processing unit, wherein the original material refinement unit is configured to receive original materials from the material uploading end, classify the original materials according to material types to obtain multi-type refined materials, and the multi-type refined materials comprise enterprise full-member universal materials, personal management and control type materials, department/group private materials, enterprise inner/outer full-member visible materials, department management and control type materials and custom authority materials;
and the material owner determining unit is configured to identify each type of material uploading party of the refined materials as a material owner, wherein the material owner has owner access rights to the materials, and the owner access rights comprise original viewing, attachment viewing, original downloading, attachment downloading, material editing, material deleting and material sharing.
Wherein, the access request response module includes:
an access request preliminary response unit, configured to respond to a material access request from the material access terminal, search all the thinned materials corresponding to the material access request by using an ES search mode, combine the thinned materials, determine whether the material access terminal sending the material access request has a corresponding material access right, and if yes, allow the material access terminal to execute a material access behavior;
and the access request secondary response unit is configured to forward the material access request to the material owner if the judgment result is that the material access request is not transmitted, the material owner performs approval, if the approval result is not passed, the material access request is refuted, and if the approval result is passed, the material access terminal is allowed to execute the material access behavior.
In yet another aspect, the present invention also relates to a terminal, the structure of which is shown in fig. 3, comprising a memory, a processor and a computer program stored in the memory and executable on the processor, the processor implementing steps in a multiparty collaborative rights management method as described in the foregoing, such as steps S1-S3 shown in fig. 1, when executing the computer program. Alternatively, the processor may implement the functions of the modules/units in the above-described embodiments of the apparatus when executing the computer program, for example, the functions of the modules/units shown in fig. 2.
In yet another aspect, the invention also relates to a computer readable storage medium storing a computer program which, when executed by a processor, implements the steps of a multiparty collaborative rights management method as described hereinbefore.
The readable storage medium may be a computer storage medium or a communication medium. Communication media includes any medium that facilitates transfer of a computer program from one place to another. Computer storage media can be any available media that can be accessed by a general purpose or special purpose computer. For example, a readable storage medium is coupled to the processor such that the processor can read information from, and write information to, the readable storage medium. In the alternative, the readable storage medium may be integral to the processor. The processor and the readable storage medium may reside in an application specific integrated circuit (Application Specific Integrated Circuits, ASIC). In addition, the ASIC may reside in a user device. The processor and the readable storage medium may reside as discrete components in a communication device. The readable storage medium may be read-only memory (ROM), random-access memory (RAM), CD-ROMs, magnetic tape, floppy disk, optical data storage device, etc.
Corresponding to the method, the multiparty collaborative rights management device, the terminal and the storage medium provided by the invention are suitable for most enterprise-level application services at present, fully meet the requirements of enterprises on rights management, and enhance the overall practicability of the system. Moreover, the hardware part has higher suitability and compatibility, and can be practically applied to the actual authority management scene of enterprises.
In addition, the invention provides references for other schemes related to the data access authority management technology, and can be used for expansion and deep research based on the references, and the scheme has very wide application prospect as a whole.
It will be evident to those skilled in the art that the invention is not limited to the details of the foregoing illustrative embodiments, and that the present invention may be embodied in other specific forms without departing from the spirit or essential characteristics thereof. The present embodiments are, therefore, to be considered in all respects as illustrative and not restrictive, the scope of the invention being indicated by the appended claims rather than by the foregoing description, and all changes which come within the meaning and range of equivalency of the claims are therefore intended to be embraced therein.
Finally, it should be understood that although the present disclosure describes embodiments, not every embodiment is intended to include only a single embodiment, and that this description is for clarity only, and that those skilled in the art will recognize that the embodiments described herein may be suitably combined to form other embodiments as would be understood by those skilled in the art.
Claims (4)
1. A rights management method for multi-party collaboration, comprising:
dividing a plurality of material access terminals into different roles according to the access mode to the materials, and setting corresponding material access rights for the material access terminals with different roles;
receiving original materials from a material uploading end, classifying the original materials according to material types to obtain multi-type refined materials, and determining the material owner of each type of refined materials;
responding to a material access request from the material access terminal, controlling the material access behavior of the material access terminal according to the material access authority of the material access terminal, and if the material access terminal which sends the material access request does not have the corresponding material access authority, sending an application to the material owner, and allowing the material access behavior if the application passes;
dividing the multiple material access terminals into different roles according to the access mode to the materials, and setting corresponding material access rights for the material access terminals with different roles, wherein the method comprises the following steps:
classifying the groups of the plurality of material access terminals by taking the enterprise dimension as a standard to form a plurality of material access terminal groups, wherein the enterprise dimension comprises a personnel dimension and a department/group dimension;
dividing a plurality of material access terminals into different roles according to access modes to materials, wherein the roles comprise viewers, users and collaborators, and setting corresponding material access rights aiming at the material access terminals of the different roles, wherein the material access rights of the viewers comprise viewing originals and viewing attachments, the material access rights of the users comprise viewing originals, viewing attachments, downloading originals and downloading attachments, and the material access rights of the collaborators comprise viewing originals, viewing attachments, downloading originals, downloading attachments, editing materials, deleting materials and sharing materials;
the receiving the original material from the material uploading end, classifying the original material according to the material type to obtain a plurality of types of refined materials, and determining the material owner of each type of refined materials, including:
the method comprises the steps of receiving original materials from a material uploading end, classifying the original materials according to material types to obtain multi-type refined materials, wherein the multi-type refined materials comprise enterprise full-member universal materials, individual management and control type materials, department/group private materials, enterprise inner/outer full-member visible materials, department management and control type materials and custom authority materials;
identifying the material uploading party of each type of the refined material as a material owner, wherein the material owner has owner access rights to the material, and the owner access rights comprise original viewing, attachment viewing, original downloading, attachment downloading, material editing, material deleting and material sharing;
the response to the material access request from the material access terminal controls the material access behavior of the material access terminal according to the material access authority of the material access terminal, if the material access terminal which sends the material access request does not have the corresponding material access authority, an application is sent to the material owner, and the application passes through the permission of the material access behavior, including:
responding to a material access request from the material access terminal, searching all the thinned materials corresponding to the material access request in an ES searching mode, combining the thinned materials, judging whether the material access terminal which sends the material access request has corresponding material access rights or not, and if so, allowing the material access terminal to execute material access behaviors;
if the judging result is that the material access request is not transmitted to the material owner, the material owner carries out approval, if the approval result is not passed, the material access request is refuted, and if the approval result is passed, the material access terminal is allowed to execute the material access behavior.
2. A rights management apparatus for cooperation with a plurality of parties, comprising:
the system comprises an access terminal authority setting module, a material access terminal processing module and a material processing module, wherein the access terminal authority setting module is configured to divide a plurality of material access terminals into different roles according to an access mode to materials, and set corresponding material access authorities for the material access terminals with different roles;
the system comprises a material type dividing module, a material processing module and a material processing module, wherein the material type dividing module is configured to receive original materials from a material uploading end, classify the original materials according to material types to obtain multi-type refined materials, and determine the material owner of each type of the refined materials;
the access request response module is configured to respond to a material access request from the material access terminal, control the material access behavior of the material access terminal according to the material access authority of the material access terminal, and if the material access terminal which sends the material access request does not have the corresponding material access authority, send an application to the material owner, and allow the material access behavior if the application passes;
the access terminal authority setting module comprises:
the access terminal group classifying unit is configured to classify a plurality of material access terminals into groups by taking an enterprise dimension as a standard to form a plurality of material access terminal groups, wherein the enterprise dimension comprises a personnel dimension and a department/group dimension;
the system comprises an access terminal authority setting unit, a storage unit and a storage unit, wherein the access terminal authority setting unit is configured to divide a plurality of material access terminals into different roles according to an access mode of the materials, the roles comprise a viewer, a user and a collaborator, and corresponding material access authorities are set for the material access terminals of the different roles, wherein the material access authorities of the viewer comprise a viewing original and a viewing attachment, the material access authorities of the user comprise a viewing original, a viewing attachment, a downloading original and a downloading attachment, and the material access authorities of the collaborator comprise a viewing original, a viewing attachment, a downloading original, a downloading attachment, editing materials, deleting materials and sharing materials;
the material type dividing module comprises:
the system comprises an original material refinement unit, a material uploading unit and a material processing unit, wherein the original material refinement unit is configured to receive original materials from the material uploading end, classify the original materials according to material types to obtain multi-type refined materials, and the multi-type refined materials comprise enterprise full-member universal materials, personal management and control type materials, department/group private materials, enterprise inner/outer full-member visible materials, department management and control type materials and custom authority materials;
a material owner determining unit configured to identify a material uploading party of each type of the thinned material as a material owner, wherein the material owner has an owner access right to the material, and the owner access right comprises original viewing, attachment viewing, original downloading, attachment downloading, material editing, material deleting and material sharing;
the access request response module comprises:
an access request preliminary response unit, configured to respond to a material access request from the material access terminal, search all the thinned materials corresponding to the material access request by using an ES search mode, combine the thinned materials, determine whether the material access terminal sending the material access request has a corresponding material access right, and if yes, allow the material access terminal to execute a material access behavior;
and the access request secondary response unit is configured to forward the material access request to the material owner if the judgment result is that the material access request is not transmitted, the material owner performs approval, if the approval result is not passed, the material access request is refuted, and if the approval result is passed, the material access terminal is allowed to execute the material access behavior.
3. A terminal comprising a memory, a processor and a computer program stored in the memory and executable on the processor, wherein the processor, when executing the computer program, implements the steps of a multi-party collaborative rights management method as claimed in claim 1.
4. A computer readable storage medium storing a computer program, characterized in that the computer program when executed by a processor implements the steps of a multiparty collaborative rights management method according to claim 1.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210174269.6A CN114567477B (en) | 2022-02-24 | 2022-02-24 | Multi-party collaborative authority management method, device, terminal and storage medium |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202210174269.6A CN114567477B (en) | 2022-02-24 | 2022-02-24 | Multi-party collaborative authority management method, device, terminal and storage medium |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114567477A CN114567477A (en) | 2022-05-31 |
| CN114567477B true CN114567477B (en) | 2024-03-22 |
Family
ID=81715691
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202210174269.6A Active CN114567477B (en) | 2022-02-24 | 2022-02-24 | Multi-party collaborative authority management method, device, terminal and storage medium |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114567477B (en) |
Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109543448A (en) * | 2018-11-16 | 2019-03-29 | 深圳前海微众银行股份有限公司 | HDFS file access authority control method, equipment and storage medium |
| CN111222166A (en) * | 2020-01-13 | 2020-06-02 | 北京磨刀刻石科技有限公司 | Method and device for sharing and managing design material in multi-user online collaboration |
| CN112825520A (en) * | 2019-11-21 | 2021-05-21 | ***通信有限公司研究院 | User privacy data processing method, device, system and storage medium |
| CN112953930A (en) * | 2021-02-09 | 2021-06-11 | 苏宁易购集团股份有限公司 | Cloud storage data processing method and device and computer system |
Family Cites Families (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| US8166067B2 (en) * | 2008-12-26 | 2012-04-24 | Sandisk Il Ltd. | Method and apparatus for providing access to files based on user identity |
-
2022
- 2022-02-24 CN CN202210174269.6A patent/CN114567477B/en active Active
Patent Citations (4)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN109543448A (en) * | 2018-11-16 | 2019-03-29 | 深圳前海微众银行股份有限公司 | HDFS file access authority control method, equipment and storage medium |
| CN112825520A (en) * | 2019-11-21 | 2021-05-21 | ***通信有限公司研究院 | User privacy data processing method, device, system and storage medium |
| CN111222166A (en) * | 2020-01-13 | 2020-06-02 | 北京磨刀刻石科技有限公司 | Method and device for sharing and managing design material in multi-user online collaboration |
| CN112953930A (en) * | 2021-02-09 | 2021-06-11 | 苏宁易购集团股份有限公司 | Cloud storage data processing method and device and computer system |
Non-Patent Citations (1)
| Title |
|---|
| 一个基于用户网络行为的访问控制模型;刘畅;何泾沙;;信息网络安全;20161010(第10期);全文 * |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114567477A (en) | 2022-05-31 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11216574B2 (en) | System and method for controlling access to aspects of an electronic messaging campaign | |
| CN101321306B (en) | Method and device for creating business and deploying business | |
| US9213805B2 (en) | Approach for managing access to data on client devices | |
| US7512662B2 (en) | System and method for user registry management of messages | |
| US9569596B2 (en) | Secure workflow and data management facility | |
| US9165289B2 (en) | Electronic meeting management for mobile wireless devices with post meeting processing | |
| US20080305832A1 (en) | Sharing profile mode | |
| US20070106698A1 (en) | Server based automatically updating address book | |
| US10540510B2 (en) | Approach for managing access to data on client devices | |
| US8732792B2 (en) | Approach for managing access to data on client devices | |
| US20060112177A1 (en) | Method and system for controlling access to presence information on a peer-to-peer basis | |
| US20130060594A1 (en) | Post meeting processing | |
| US20190373028A1 (en) | Computer implemented method and system for virtual office management | |
| CA2801087C (en) | System and method for managing a messaging campaign within an enterprise | |
| US8495753B2 (en) | Electronic meeting management system for mobile wireless devices | |
| US11947547B1 (en) | Contextual search using database indexes | |
| CN112351392B (en) | Cloud communication short message service platform | |
| CN114201950A (en) | Engineering documentation, text receiving and transmitting system based on intelligent cloud platform | |
| CN102780721A (en) | Picture sharing method and picture sharing device for network albums | |
| CN101072206B (en) | Secondary authenticating method and system for instant messaging system | |
| CN113300933A (en) | Session content management method and device, computer equipment and readable storage medium | |
| CN114567477B (en) | Multi-party collaborative authority management method, device, terminal and storage medium | |
| CN104933548A (en) | Synergy management method and device based on instant messaging application | |
| US11050757B1 (en) | Systems and methods for integrated communications | |
| US20240029029A1 (en) | Dynamic meeting creation and scheduling |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |