The invention discloses a one-to-one authority authorization method and system on a user based on roles. The method comprises the steps of 1, building the roles, wherein each role is an independent individual, and is not in a group and / or a category; 2, authorizing the roles built in the first step separately; 3, associating the user to the roles, wherein in the same time frame, one role can be only associated to sole user, while one user can be associated to one or more roles. According to the one-to-one authority authorization method and system on the user based on the roles, the roles are independent individuals, and are different from those of traditional group and / or category properties, and in the same time frame, one role can be associated to sole user, thus the authority management efficiency in the system using process is sharply improved, dynamic authorization is simpler, more convenient, and clearer, and the efficiency and reliability in authority arrangement are improved.