[0046] In order to make the objectives, technical solutions, and advantages of the present invention clearer, the following further describes the present invention in detail with reference to the accompanying drawings and embodiments. It should be understood that the specific embodiments described herein are only used to explain the present invention, but not to limit the present invention.
[0047] The embodiment of the present invention manages the files by type and sets the user's access and operation authority to the file, so as to realize the authority management to control the use of the file by different users.
[0048] In order to illustrate the technical solution of the present invention, specific embodiments are used for description below.
[0049] figure 1 It shows a network structure suitable for file use permission management in the embodiment of the present invention, and at least two terminals and the server communicate through a wired or wireless network.
[0050] The terminal logs in to the database server, and uses the files stored in the database server through the access and operation permissions set on the database server.
[0051] The terminal can be a personal computer, a mobile phone, or a personal digital assistant (PDA), etc., on which a gravity sensor is installed to sense the altitude, tilt angle, and motion acceleration of the terminal.
[0052] figure 2 The implementation process of the method for managing file usage rights of a database server provided by an embodiment of the present invention is shown, and the details are as follows:
[0053] In step S201, a user upload file request is received, the uploaded file is stored, and the file service information of the uploaded file is recorded in the file information data table;
[0054] In the embodiment of the present invention, after receiving a request from a company employee to upload a document such as a contract or a bill to the database, the file upload is allowed. The database records the file business information of the uploaded file. The file business information includes uploader, upload time, file type, file and uploader's department, etc., which means that the relevant information of the uploaded file is inserted into the database as a record of file information data Table. The file information data table of the database may be a database table containing data items such as user number, user department, file type, file department, and file upload time. Among them, the user number is used as the identification field of the company personnel; the user department and the file department are used as the user authority setting field to distinguish whether the personnel of the department have the authority to use the file of the department or other department files; the file type is used as the field for uniformly dividing the file category At the same time, the file type corresponds to the file department. For example, the export contract type file belongs to the business department, the purchase contract type file belongs to the purchasing department, and the customer invoice type file belongs to the finance department.
[0055] In step S202, receiving an authority setting instruction, and setting the user's access and operation authority to the file stored in the database according to the file business information in the file information data table;
[0056] The user's authority to use files is divided into operation authority and access authority. Among them, the operation authority includes the right to archive and the right to delete. The access authority is divided into visible to everyone, invisible to everyone, visible to department, and visible to only the person. It can be set in the user authority data table. The user authority table can be a database table containing data items such as user archive authority, delete authority, user access authority, user account, and file type.
[0057] The operation authority is generally set for the company management. After the user with the archive authority performs the archive operation on the stored file, other users are prohibited from modifying the file; the user with the delete authority can perform the operation on the files stored in the database. delete.
[0058] Access permissions are set for management and company employees, and the visibility level of files is set for each user according to the type of file.
[0059] Visibility levels are divided into: when the file type is set to all visible permissions, the user can access all files in the file type; when the file type is set to department visible permissions, the user can only access the file type that belongs to The file of this user’s department; when the file type is set to be visible only to the user, according to the file uploader information recorded in the file business information, only the uploader can access the files uploaded by the file type; when the file type corresponds to the setting When it is invisible, this user has no right to access all files of this type.
[0060] In step S203, a user login instruction is received, and the user's permission to access and operate the files stored in the database is controlled according to the user account information and the set user permissions.
[0061] After the user logs in, record the user account information, match the user account information with the user account in the user permission table, control the user's permission to access and operate the files stored in the database, and realize the unified management of file usage permissions.
[0062] Figure 4 The implementation process of setting the user's access and operation authority provided by the embodiment of the present invention is shown, and the details are as follows:
[0063] In step S401, update the operation authority of the super authority user to archive authority and delete authority according to the account information of the super authority user;
[0064] A super authority user can be an enterprise management or system administrator, and can modify and delete files stored in the database. The way to update the operation authority can be to update the corresponding content of the archive right and delete right data items in the user authority data table to data 1, which means that the user is set to have the archive right and the delete right.
[0065] In step S402, according to the user account information and file type information of the super-privileged user and the ordinary-privileged user, the access rights of the super-privileged user and the ordinary-privileged user are updated.
[0066] The way to update the access authority can be to update the corresponding content of the access authority data item in the user authority data table to any one of all visible, visible to the department, visible only to the user, or invisible to the user according to the user authority level and file type. Update.
[0067] Super authority users can browse or download all files.
[0068] Users with ordinary rights are ordinary employees of various departments of the enterprise, and can browse or download files within the scope of rights. For example, if Liu Huan of the business department updates the file access permissions for export contract types to all visible, he can browse and download all the files of his own department and other departments that are export contracts; if the update is department visible, he can only browse or download files belonging to This department, and the file type is the export contract; if the update is only visible to the person, you can only browse or download the file uploaded by yourself and the type is the export contract.
[0069] Figure 5 The implementation process of the method for managing terminal file usage rights provided by the embodiment of the present invention is shown, and the details are as follows:
[0070] In step S501, a file upload request is sent to the database server, and the file is uploaded to the database server;
[0071] The terminal sends a file upload request to the database server, and uploads the file to the database server.
[0072] In step S502, the terminal sends a permission setting instruction according to the file service information recorded in the file information data table by the database server;
[0073] In step S503, the stored file is used according to the user access and operation authority controlled by the database server.
[0074] The database server has set user permissions for accessing and operating files, and the terminal accesses and operates the stored files according to the set permissions.
[0075] A person of ordinary skill in the art can understand that the steps or part of the steps in the above method embodiments can be implemented by a program instructing relevant hardware. The foregoing program can be stored in a computer readable storage medium. When the program is executed, the execution includes The steps of the foregoing method embodiment, and the foregoing storage medium includes: ROM, RAM, magnetic disk, or optical disk and other media that can store program codes.
[0076] In the embodiment of the present invention, files are managed by types, and file access and operation permissions are set for different users to control users’ use permissions to files, realize unified management of file permissions by file level and user level, and improve files. Safety management efficiency.
[0077] Image 6 The structure of the apparatus for managing file usage rights of a database server provided by the embodiment of the present invention is shown. For ease of description, only the parts related to the embodiment of the present invention are shown.
[0078] The device can be used in various pattern recognition systems. These pattern recognition systems can be loaded on electronic devices, such as computers, personal digital assistants (PDAs), etc., and the file usage authority management device can be run on these electronic devices The software unit, hardware unit, or a combination of software and hardware within the unit can also be integrated into these electronic devices as independent pendants or run in the application systems of these electronic devices, among which:
[0079] The apparatus 1 for managing the file use authority of a database server includes: a file storage unit 11, an information update unit 12, an authority setting unit 13 and an authority control unit 14.
[0080] The file storage unit 11 receives a file upload request from a user, and stores the uploaded file.
[0081] The information update unit 12 records the uploaded file service information in the file information table.
[0082] In the embodiment of the present invention, after receiving a request from a company employee to upload a document such as a contract or a bill to the database, the file upload is allowed. The database records the file business information of the uploaded file. The file business information includes uploader, upload time, file type, file and uploader's department, etc., which means that the relevant information of the uploaded file is inserted into the database as a record of file information data Table. The file information data table of the database may be a database table containing data items such as user number, user department, file type, file department, and file upload time. Among them, the user number is used as the identification field of the company personnel; the user department and the file department are used as the user authority setting field to distinguish whether the personnel of the department have the authority to use the file of the department or other department files; the file type is used as the field for uniformly dividing the file category At the same time, the file type corresponds to the file department. For example, the export contract type file belongs to the business department, the purchase contract type file belongs to the purchasing department, and the customer invoice type file belongs to the finance department.
[0083] After the file service information is updated, the authority setting unit 13 sets the user's access and operation authority to the files stored in the database according to the file service information in the file information data table.
[0084] The user's authority to use files is divided into operation authority and access authority. Among them, the operation authority includes: the right to archive and the right to delete. The access authority is divided into visible to everyone, invisible to everyone, visible to department, and visible only to the person. It can be set in the user authority data table. The user authority table can be a database table containing data items such as user archive authority, delete authority, user access authority, user account, and file type.
[0085] The operation authority is generally set for the company management. After the user with the archive authority performs the archive operation on the stored file, other users are prohibited from modifying the file; the user with the delete authority can perform the operation on the files stored in the database. delete.
[0086] Access permissions are set for management and company employees, and the visibility level of files is set for each user according to the type of file.
[0087] Visibility levels are divided into: when the file type is set to all visible permissions, the user can access all files in the file type; when the file type is set to department visible permissions, the user can only access the file type that belongs to The file of this user’s department; when the file type is set to be visible only to the user, according to the file uploader information recorded in the file business information, only the uploader can access the files uploaded by the file type; when the file type corresponds to the setting When it is invisible, this user has no right to access all files of this type.
[0088] Among them, the authority setting unit 13 includes an operation authority setting unit 131 and an access authority setting unit 132.
[0089] The operation authority setting unit 131 updates the operation authority of the super authority user to archive authority and delete authority according to the account information of the super authority user. A super authority user can be an enterprise management or system administrator, and can modify and delete files stored in the database. The way to update the operation authority can be to update the corresponding content of the archive right and delete right data items in the user authority data table to data 1, which means that the user is set to have the archive right and the delete right.
[0090] The access authority setting unit 132 updates the access authority of the super authority user and the normal authority user based on the user account information and file type information of the super authority user and the normal authority user.
[0091] The way to update the access authority can be to update the corresponding content of the access authority data item in the user authority data table to all visible, department visible, visible only to the user, or invisible to the user. The specific content should be based on the user authority level and file type. Update.
[0092] Super authority users can browse or download all files. Users with ordinary rights are ordinary employees of various departments of the enterprise, and can browse or download files within the scope of rights. For example, if Liu Huan of the business department updates the file access permissions for export contract types to all visible, he can browse and download all the files of his own department and other departments that are export contracts; if the update is department visible, he can only browse or download files belonging to This department, and the file type is the export contract; if the update is only visible to the person, you can only browse or download the file uploaded by yourself and the type is the export contract.
[0093] After the user's permission to use the file is set, the user login instruction is received through the permission control unit 14, and the user's permission to access and operate the file stored in the database is controlled according to the user account information and the set user permission.
[0094] After the user logs in, record the user account information, match the user account information with the user account in the user permission table, control the user's permission to access and operate the files stored in the database, and realize the unified management of file usage permissions.
[0095] Figure 7 The structure of the apparatus for managing terminal file usage rights provided by the embodiment of the present invention is shown. For ease of description, only the parts related to the embodiment of the present invention are shown.
[0096] The terminal file use authority management device 2 includes: a file upload unit 21, an authority instruction unit 22, and a file use unit 23.
[0097] The file uploading unit 21 sends a file upload request to the database server, and uploads the file to the database server. The terminal sends a file upload request to the database server, and uploads the file to the database server.
[0098] The authority indicating unit 22 sends an authority setting instruction according to the file business information recorded in the file information data table by the database server.
[0099] Use the stored files according to the user access and operation authority controlled by the database server.
[0100] The file use unit 23 uses the stored files according to the user access and operation authority controlled by the database server. The database server has set user permissions for accessing and operating files, and the terminal accesses and operates the stored files according to the set permissions.
[0101] Figure 8 It shows the structure of the file use permission management system provided by the embodiment of the present invention. For ease of description, only the parts related to the embodiment of the present invention are shown.
[0102] The file use authority management system includes: a database server file use authority management device 1 and a terminal file use authority management device 2. Among them, specifically:
[0103] The file upload unit 21 sends a file upload request to the file storage unit 11 in the database server file use authority management device 1, and uploads the file to the file storage unit 11;
[0104] The file storage unit 11 receives a user upload file instruction, and stores the uploaded file;
[0105] The information update unit 12 records the file service information of the uploaded file in the file information data table;
[0106] The authority indicating unit 22 sends an authority setting instruction to the authority setting unit 13 according to the file business information recorded in the file information data table by the information update unit 12;
[0107] The authority setting unit 13 receives the authority setting instruction, and sets the user's access and operation authority to the files stored in the database according to the file business information in the file information data table;
[0108] The authority control unit 14 controls the user's authority to access and operate the files stored in the database according to the user account information and the user authority set by the authority setting unit 13;
[0109] The file use unit 23 uses the stored files according to the user access and operation authority controlled by the authority control unit 14.
[0110] In the embodiment of the present invention, files are managed by types, and file access and operation permissions are set for different users to control users’ use permissions to files, realize unified management of file permissions by file level and user level, and improve files. Safety management efficiency.
[0111] The above are only the preferred embodiments of the present invention and are not intended to limit the present invention. Any modification, equivalent replacement and improvement made within the spirit and principle of the present invention shall be included in the protection of the present invention. Within range.