摘要
基于一些系统中角色分配过细、灵活性差的问题,提出了一种基于用户组与细粒度权限相结合的RBAC权限管理模型.模型运用系统模块分配用户权限范围,运用细粒度权限进一步细化用户权限;基于系统资源模块增加用户组,将角色权限直接赋予用户组,提高了授权效率;针对个别用户进行直接授权,避免角色冗余,使得授权管理变得更灵活和有效.将模型应用到一个CMS管理系统中,权限分配灵活、角色和用户组定义明确,很好的满足系统的权限管理需要.
Based upon the problem of over-detailed distribution and lack of flexibility,a RBAC authorization management model which combines the user group and free-gained authority is proposed in this paper.The model distributes the authority range of the user with the module of the system and uses the free-gained authority to refine it.Adding user groups based on system resource modules and granting role authorization directly to user groups,the efficiency of authorization can be improved.The management of authorization can be more flexible and effective as the individual user can be directly authorized to avoid surplus roles in the process.By applying the model in a CMS management system,the distribution of authority can be more flexible,the definition of role and user group can be clarified,which can satisfy the need of authority management better.
出处
《湛江师范学院学报》
2011年第6期136-141,共6页
Journal of Zhanjiang Normal College
