CN1851724A - Business data operation coutrol method and business system - Google Patents
Business data operation coutrol method and business system Download PDFInfo
- Publication number
- CN1851724A CN1851724A CNA2005100856287A CN200510085628A CN1851724A CN 1851724 A CN1851724 A CN 1851724A CN A2005100856287 A CNA2005100856287 A CN A2005100856287A CN 200510085628 A CN200510085628 A CN 200510085628A CN 1851724 A CN1851724 A CN 1851724A
- Authority
- CN
- China
- Prior art keywords
- operator
- user
- business
- event identifier
- group
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Pending
Links
Images
Landscapes
- Storage Device Security (AREA)
Abstract
The present invented method includes storing operator identification, operator groups and operator groups and relevant transaction data uses authority information in service system containing plurality of transaction data; when service system receiving user logging request, according to operator identification in request to proceed authentication to user identity, querying operator identification affiliated operator groups, opening said operator groups relevant transaction data uses authority to current user. The present invented system includes memory unit, interface unit, authentication unit and control unit. The present invented method and system can integrate managing plurality of professional operation control, providing unified interface Style and realizing controlling user professional authority.
Description
Technical field
The present invention relates to data management, refer to a kind of control method and system that business datum is operated especially.
Background technology
In the prior art, different business all has the cover service data manipulating control method of oneself, by the difference of programmer according to business, formulates when carrying out business development.Therefore, each business of the prior art, look ﹠ feel, operation style are different, and this has inconvenience for use of user, has weakened professional attractive force; Simultaneously, when carrying out business development, need the programmer that corresponding overlapping development is carried out in the operating right control of business, improved cost of development.
In the existing business, all use the client terminal mode to realize the control of user's rights of using, like this, need the keeper that the relevant terminal interface software is installed on the terminal machine, increased human cost and maintenance difficulties for professional promoting the use of.
Summary of the invention
The invention provides a kind of service data manipulating control method and operation system, control skimble-scamble problem in order to solve the operation that exists in the prior art to each business datum.
The invention provides a kind of service data manipulating control method, comprise: in an operation system that comprises a plurality of business datums, operator group under storage operation person's sign, the operator identification and operator group are to the rights of using information of corresponding service data;
After operation system receives user's logging request, according to the operator identification in the request user identity is carried out authentication, inquire the affiliated operator group of operator identification; This operator group is open to the active user to the rights of using of corresponding service data.
Described operator group is preestablished by operation system the rights of using of corresponding service data, and concrete grammar is:
The event identifier that setting operation person group has the right to use; And one or more operational order signs of setting the event identifier correspondence;
Described operator group has the rights of using that its whole operational orders identify pairing operational order.
In described operation system, store the management control right limit tables of data of each business datum; In described tables of data, one or more operational order signs of the event identifier that operator group, each operator group have the right to use under pre-defined each operator identification and each event identifier correspondence.
Described event identifier links corresponding with vocational window menu, button or URL.
The event identifier of different business and operational order sign differ from one another.
Be provided with in described operation system and different business corresponding service key sign, described event identifier and operational order sign are associated with corresponding professional service key sign, and carry out Unified coding.
According to said method of the present invention, the user logins described operation system by client end interface or WEB interface; Operation system is returned corresponding vocational window information to the user after determining the business that this user has the right to use.
In described vocational window, demonstrate menu, button or URL link that the user has the right to use; Or menu, button or URL bookmark that the user is had no right to use are forbidding.
Operation system provided by the invention comprises:
Storage unit, store each business datum, and store at least: each professional corresponding service key sign, with professional corresponding operator identification and encrypted message, operator identification under operator's group information, event identifier information that operator group comprises and with the corresponding operational order identification information of event identifier;
Interface unit is used for carrying out information interaction with user side, receives the operator identification and the encrypted message of user's input, exports to authenticating unit;
Whether authenticating unit is inquired about described storage unit according to the operator identification, password and the business information that receive, have the right to select this business to carry out authentication to the user; If the authentication success is then exported to control module with the user side information that receives, otherwise, failed message returned by interface unit to the user;
Control module calls the corresponding service data according to operator group under the current operator identification of user's input to the rights of using of corresponding service, and exports the vocational window information that the user has the right to use by interface unit to user side.
The beneficial effect that technical solution of the present invention is brought is as follows:
(1) operation system of the present invention can no longer need the corresponding operating right management logic of each business development one cover has been improved professional development efficiency with a plurality of business integration to unifying rights management together, effectively reduces professional cost of development.
(2) adopt the inventive method, serial business can have unified look ﹠ feel, when the user uses business, familiarity feeling and cordial feeling is arranged, and has improved professional attractive force, is convenient to professional promotion and application.
(3) the present invention supports the user to pass through WEB interface registering service system, does not need to install on user terminal in advance the relevant terminal interface software, realizes simple, convenient.
Description of drawings
Fig. 1 uses synoptic diagram for the inventive method;
Fig. 2 is an operation system structural representation of the present invention;
Fig. 3 is event identifier and an operational order sign corresponding relation synoptic diagram in the embodiment of the invention.
Embodiment
Referring to Fig. 1, the inventive method comprises: in advance in an operation system that comprises a plurality of business datums, store operator group under each professional corresponding service key sign, operator identification, Actor password, the operator identification and the operator group rights of using information to the corresponding service data.The user identifies by WEB interface or client end interface input operator and password passes through the WEB server log after operation system, operation system is carried out authentication to described operator identification and password, after authentication is passed through, according to the operator group under the operator identification, that predefined this operator group in the operation system is open to the active user to the rights of using of corresponding service data.
In said method, operator group is preestablished by operation system the rights of using of corresponding service data, and concrete grammar is:
Setting operation person group corresponding service key sign, whether promptly a certain operator group has the right to use a certain business; The event identifier that operator group has the right to use (CASE ID), described event identifier links corresponding with vocational window menu, button or URL;
Set one or more operational order signs (MML ID) of event identifier correspondence, each operational order sign is corresponding with a concrete business operation order;
Described operator group has the rights of using that its whole operational orders identify pairing operational order.
The data management of a plurality of business can be realized in the operation system,, the event identifier and the operational order sign of different business can be set in the following way for event identifier and the operational order sign of distinguishing different business:
For example: distribute a unique service code to different business, as 81,82 etc.; Then corresponding professional event identifier can adopt the mode of service code+serial number, and the event identifier as professional 81 is 81001,81002 etc.; Professional 82 event identifier is 82001,82002 etc.; As mentioned above, each event identifier links etc. corresponding with menu, button or the URL of corresponding service window in logic control.
The operational order sign can adopt the coding rule identical with event identifier.
After the user passed through client end interface or WEB interface registering service system, operation system determined the business that this user has the right to use automatically according to user ID, returns corresponding vocational window information to the user.In described vocational window, demonstrate menu, button or URL link that the user has the right to use; Or menu, button or URL bookmark that the user is had no right to use are forbidding.
The concrete structure of above-mentioned operation system comprises as shown in Figure 2:
Storage unit, store each business datum, and store at least: each professional corresponding service key sign, with professional corresponding operator identification and encrypted message, operator identification under operator's group information, event identifier information that operator group comprises and with the corresponding operational order identification information of event identifier;
Interface unit carries out information interaction by interface and user side, receives the operator identification and the encrypted message of user's input, exports to authenticating unit;
Whether authenticating unit is inquired about described storage unit according to the operator identification, password and the business information that receive, have the right to select this business to carry out authentication to the user; If the authentication success is then exported to control module with the user side information that receives, otherwise, failed message returned by interface unit to the user;
Control module calls the corresponding service data according to operator group under the current operator identification of user's input to the rights of using of corresponding service, and exports the vocational window information that the user has the right to use by interface unit to user side.
Operator's group information under operator identification who stores in the storage unit and corresponding encrypted message, the operator, the event identifier information that operator group comprises and with the corresponding operational order identification information of event identifier, can be stored by setting up the data relationship table, and interconnecting and the holding genus of setting up between each table concerns.Concrete tables of data comprises:
Table one is operator's definition list, can comprise following main field: the operator's group identification under operator identification, Actor password, the operator, and password expiration day, cryptographic validity, can also comprise that the founder identifies, allows information such as login banner, as shown in the table:
Table one:
| Operator's definition list |
| The operator identification |
| The Actor password |
| Operator's group identification under the operator |
| Password expiration day |
| Cryptographic validity |
| Founder's sign |
| Allow login banner |
| ...... |
Table two is operator's group definition table, can comprise following main field: operator's group identification, operator group descriptor, operator's group level sign and operator group authority information, as shown in the table:
Table two:
| Operator's group definition table |
| Operator's group identification |
| Operator group descriptor |
| Operator's group level sign |
| Operator group authority information |
| ...... |
Wherein, operator group authority information adopts the included event identifier (CASE ID) of group to limit, as previously mentioned, each event identifier is corresponding with menu, button or a hyperlink etc. on the vocational window, therefore, by limiting the included event identifier of operator group, just define the rights of using of an operator group to business.As shown in Table 1, each operator identification is corresponding to the operator's group identification under, and promptly an operator only belongs to an operator group, and whole authorities of the operator group under having.Which event identifier an operator group specifically includes, set according to the rank of this operator group by operation system, high level operator group can comprise the operating right that low-level operation person group is had, same grade of other different operating person group includes different event identifiers, also may include several same event identifier.
Table three is event identifier (CASE ID) definition list, can comprise following main field: the URL (unified resource location) of event identifier, functional description, menu (button) definition, menu (button) correspondence and the operational order sign (MML ID) corresponding with this event identifier etc.; As shown in the table:
Table three:
| Event identifier (CASE ID) definition list |
| Event identifier |
| Functional description |
| Menu (button) definition |
| The URL that menu (button) is corresponding |
| The operational order sign of event identifier correspondence |
| ...... |
As mentioned above, in order to distinguish different business, the event identifier in the table three should be associated with different business, and promptly each business has an one's own cover and other professional different event identifier.
Each event identifier can comprise one or more operational order signs, and the corresponding relation of event identifier and operational order sign comprises as shown in Figure 3:
CASE ID1, corresponding to a menu item on the vocational window, this CASE ID1 comprises three operational order signs, MML ID1, MML ID2 and MML ID3.Corresponding to the concrete operations meaning on the vocational window be: the window menu of event identifier CASE ID1 correspondence, comprise three business operation orders, the operational order sign of these three business operation order correspondences is respectively MML ID1, MML ID2 and MMLID3.
CASE ID2, corresponding to a concrete operations button on the vocational window, equally also can corresponding several MML ID, signal is drawn in the drawings.
CASE ID3 is corresponding to a hyperlink on the vocational window.
Can in a business, can define a plurality of CASE ID according to the needs of business, and the operating right of each CASE ID and the foundation of the operator group in the table two are got in touch.That is: CASE ID can be used by one or more operator group; An operator group can use a plurality of CASE ID of operation system definition.
Table four is operational order sign (MML ID) definition list, can comprise following main field: the operational order of operational order sign, correspondence, operational order description etc.; As shown in the table:
Table four:
| Operational order sign (MML ID) definition list |
| The operational order sign |
| Corresponding operational order |
| Operational order is described |
| ...... |
In the table four, the corresponding operational order of business being carried out concrete operations of operational order sign.MML ID is the minimum basic unit in the business operations competence.
Similarly, in order to distinguish different business, the operational order sign in the table four should be associated with different business, and promptly each business has an one's own cover and other professional different operational orders sign.
More than each the table, only be to illustrate in the operation system of the present invention, how to realize the storage and the management of each business information, in actual applications, can also be according to different business demands, increase various definition lists and attribute list, and to above-mentioned increase, deletion and function expansion of respectively showing to carry out field, in this explanation for example that differs.
By above description as can be known, the present invention realizes operational administrative to business by giving operator group to the operating right of business.
Operator group is to the rights of using of business, identifies by event identifier and operational order and controls.In operation system, the corresponding service logic of menu, button or hyperlink etc. on realization event sign and the vocational window concerns, and each operational order sign is corresponding with a concrete business operation order, realize of the operating right control of operator's cohort with this to business.
Each operator identification is unique to belong to an operator group, and has the whole operating rights of affiliated operator group to business; After the user uses operator identification's registering service system, system will open whole service authoritys of operator group of operator identification's correspondence of its input to this user.
Operation system of the present invention is passed through different business setting service key signs, and sets up the corresponding relation of service key sign and operator group, realizes the unified rights management to a plurality of business.
Obviously, those skilled in the art can carry out various changes and modification to the present invention and not break away from the spirit and scope of the present invention.Like this, if of the present invention these are revised and modification belongs within the scope of claim of the present invention and equivalent technologies thereof, then the present invention also is intended to comprise these changes and modification interior.
Claims (10)
1, a kind of service data manipulating control method comprises: in an operation system that comprises a plurality of business datums, operator group under storage operation person's sign, the operator identification and operator group are to the rights of using information of corresponding service data;
After operation system receives user's logging request, according to the operator identification in the request user identity is carried out authentication, inquire the affiliated operator group of operator identification; This operator group is open to the active user to the rights of using of corresponding service data.
2, the method for claim 1 is characterized in that, described operator group is preestablished by operation system the rights of using of corresponding service data, and concrete grammar is:
The event identifier that setting operation person group has the right to use, and one or more operational order signs of event identifier correspondence;
Described operator group has the rights of using that its whole operational orders identify pairing operational order.
3, method as claimed in claim 2 is characterized in that, in described operation system, stores the management control right limit tables of data of each business datum; In described tables of data, one or more operational order signs of the event identifier that operator group, each operator group have the right to use under pre-defined each operator identification and each event identifier correspondence.
4, method as claimed in claim 2 is characterized in that, described event identifier links corresponding with vocational window menu, button or URL.
5, method as claimed in claim 2 is characterized in that, the event identifier of different business and operational order sign differ from one another.
6, method as claimed in claim 5 is characterized in that, is provided with in described operation system and different business corresponding service key sign, and described event identifier and operational order sign are associated with corresponding professional service key sign, and carry out Unified coding.
7, the method for claim 1 is characterized in that, the user logins described operation system by client end interface or WEB interface; Operation system is returned corresponding vocational window information to the user after determining the business that this user has the right to use.
8, method as claimed in claim 7 is characterized in that, demonstrates menu, button or URL link that the user has the right to use in described vocational window, or menu, button or the URL bookmark that the user haves no right to use is forbidding.
9, the method for claim 1 is characterized in that, described operation system comprises:
Storage unit, store each business datum, and store at least: each professional corresponding service key sign, with professional corresponding operator identification and encrypted message, operator identification under operator's group information, event identifier information that operator group comprises and with the corresponding operational order identification information of event identifier;
Interface unit is used for carrying out information interaction with user side, receives the operator identification and the encrypted message of user's input, exports to authenticating unit;
Authenticating unit is inquired about described storage unit according to the operator identification and the encrypted message that receive, and the user is carried out authentication; If the authentication success is then exported authentication and is become function signal to give control module, otherwise, failed message returned by interface unit to the user;
Control module calls the corresponding service data according to operator group under the current operator identification of user's input to the rights of using of corresponding service, and exports the vocational window information that the user has the right to use by interface unit to user side.
10, a kind of operation system is characterized in that comprising:
Storage unit, store each business datum, and store at least: each professional corresponding service key sign, with professional corresponding operator identification and encrypted message, operator identification under operator's group information, event identifier information that operator group comprises and with the corresponding operational order identification information of event identifier;
Interface unit is used for carrying out information interaction with user side, receives the operator identification and the encrypted message of user's input, exports to authenticating unit;
Whether authenticating unit is inquired about described storage unit according to the operator identification, password and the business information that receive, have the right to select this business to carry out authentication to the user; If the authentication success is then exported to control module with the user side information that receives, otherwise, failed message returned by interface unit to the user;
Control module calls the corresponding service data according to operator group under the current operator identification of user's input to the rights of using of corresponding service, and exports the vocational window information that the user has the right to use by interface unit to user side.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2005100856287A CN1851724A (en) | 2005-07-13 | 2005-07-13 | Business data operation coutrol method and business system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CNA2005100856287A CN1851724A (en) | 2005-07-13 | 2005-07-13 | Business data operation coutrol method and business system |
Publications (1)
| Publication Number | Publication Date |
|---|---|
| CN1851724A true CN1851724A (en) | 2006-10-25 |
Family
ID=37133203
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CNA2005100856287A Pending CN1851724A (en) | 2005-07-13 | 2005-07-13 | Business data operation coutrol method and business system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN1851724A (en) |
Cited By (10)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN102096785A (en) * | 2011-02-24 | 2011-06-15 | 北京书生国际信息技术有限公司 | Authority control method and device |
| CN101510239B (en) * | 2008-02-12 | 2011-12-21 | 富士施乐株式会社 | Information processing system and information processing method |
| CN103581143A (en) * | 2012-08-03 | 2014-02-12 | 北京亿赞普网络技术有限公司 | User authority authentication method, system, client side and server side |
| CN104484187A (en) * | 2014-12-31 | 2015-04-01 | 山东中创软件商用中间件股份有限公司 | Information integration method and information integration system |
| CN104657656A (en) * | 2015-03-06 | 2015-05-27 | 中国银行股份有限公司 | Operation safety control method and device based on banking system |
| CN104869142A (en) * | 2014-02-26 | 2015-08-26 | 苏州海博智能***有限公司 | Link sharing method based on social platform, system and device |
| CN105139187A (en) * | 2015-08-31 | 2015-12-09 | 北京今目标信息技术有限公司 | Data management method and device based on event |
| CN106529229A (en) * | 2015-09-10 | 2017-03-22 | 北京国双科技有限公司 | Permission data processing method and apparatus |
| CN109814889A (en) * | 2019-01-30 | 2019-05-28 | 北京百度网讯科技有限公司 | Method and apparatus for updating source code library |
| CN109816199A (en) * | 2018-12-14 | 2019-05-28 | 平安医疗健康管理股份有限公司 | Task processing method and processing device, server and computer readable storage medium |
-
2005
- 2005-07-13 CN CNA2005100856287A patent/CN1851724A/en active Pending
Cited By (14)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101510239B (en) * | 2008-02-12 | 2011-12-21 | 富士施乐株式会社 | Information processing system and information processing method |
| CN102096785A (en) * | 2011-02-24 | 2011-06-15 | 北京书生国际信息技术有限公司 | Authority control method and device |
| CN102096785B (en) * | 2011-02-24 | 2012-12-19 | 北京书生电子技术有限公司 | Authority control method and device |
| CN103581143A (en) * | 2012-08-03 | 2014-02-12 | 北京亿赞普网络技术有限公司 | User authority authentication method, system, client side and server side |
| CN104869142A (en) * | 2014-02-26 | 2015-08-26 | 苏州海博智能***有限公司 | Link sharing method based on social platform, system and device |
| CN104484187A (en) * | 2014-12-31 | 2015-04-01 | 山东中创软件商用中间件股份有限公司 | Information integration method and information integration system |
| CN104657656A (en) * | 2015-03-06 | 2015-05-27 | 中国银行股份有限公司 | Operation safety control method and device based on banking system |
| CN104657656B (en) * | 2015-03-06 | 2017-11-14 | 中国银行股份有限公司 | A kind of manipulation method of controlling security and device based on banking system |
| CN105139187A (en) * | 2015-08-31 | 2015-12-09 | 北京今目标信息技术有限公司 | Data management method and device based on event |
| CN106529229A (en) * | 2015-09-10 | 2017-03-22 | 北京国双科技有限公司 | Permission data processing method and apparatus |
| CN106529229B (en) * | 2015-09-10 | 2019-06-18 | 北京国双科技有限公司 | The treating method and apparatus of permissions data |
| CN109816199A (en) * | 2018-12-14 | 2019-05-28 | 平安医疗健康管理股份有限公司 | Task processing method and processing device, server and computer readable storage medium |
| CN109816199B (en) * | 2018-12-14 | 2023-09-22 | 深圳平安医疗健康科技服务有限公司 | Work task processing method and device, server and computer readable storage medium |
| CN109814889A (en) * | 2019-01-30 | 2019-05-28 | 北京百度网讯科技有限公司 | Method and apparatus for updating source code library |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| CN1851724A (en) | Business data operation coutrol method and business system | |
| CN106776780B (en) | Data exchange and sharing method and system in cloud environment | |
| CN1542645A (en) | Application authentication system, secure device, and terminal device | |
| CN1795444A (en) | Device authentication system | |
| US20060168376A1 (en) | Usage of keyboard driver in extensible firmware interface for adding new hot keys at firmware level | |
| CN1816192A (en) | Process for the secure management of the execution of an application | |
| CN1574727A (en) | Method of preventing tampering of program, method of upgrading obfuscated program, and apparatus thereof | |
| CN111651738B (en) | Fine-grained role authority unified management method based on front-end and back-end separation architecture and electronic device | |
| CN113094334B (en) | Digital service method, device, equipment and storage medium based on distributed storage | |
| CN1255711C (en) | Method and apparatus for inputting symbol | |
| CN1929376A (en) | Method for establishing universal identity authentication system and user's information storage | |
| CN1991800A (en) | Fingerprint identification storage device and fingerprint identification method | |
| CN1790257A (en) | Method for uniformly configuring configuration files | |
| CN1870512A (en) | Method for implementing information management and device for implementing event route | |
| CN1256663C (en) | Management method possessing real time helping function in insertion type system | |
| CN101060398A (en) | A new safety group safety certificate generating method, communication method, and network system | |
| CN1244078C (en) | Portable terminal | |
| CN113438304A (en) | Data query method, device, server and medium based on database cluster | |
| CN111339193B (en) | Category encoding method and device | |
| CN109388922A (en) | A kind of user management based on RBAC model and a key log in realizing method | |
| CN1320798C (en) | Cipher key creating and distributing method and the computer network system therewith | |
| CN1493995A (en) | Method of control system safety management | |
| CN1705265A (en) | Authentication with credentials in JAVA messaging service | |
| CN1571374A (en) | A method for controlling access right of private network user | |
| CN1737724A (en) | Managing administration of data rights |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| C06 | Publication | ||
| PB01 | Publication | ||
| C10 | Entry into substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| C12 | Rejection of a patent application after its publication | ||
| RJ01 | Rejection of invention patent application after publication |