Multi-dimensionalauthority model design method for matrix management
A technology of permission model and design method, which is applied in computing, electronic digital data processing, structured data retrieval, etc., can solve the problems of huge workload, unintuitive and inconvenient definition of information isolation rules, etc., and achieve vertical control and horizontal Effects of control, avoidance of information leakage, accurate positioning and judgment
- Summary
- Abstract
- Description
- Claims
- Application Information
AI Technical Summary
Problems solved by technology
Method used
Image
Examples
Embodiment 1
[0046] This embodiment proposes a multi-dimensional authority model design method for matrix management, including the following steps:
[0047] A. The system administrator grants information permissions to users or roles through information management objects:
[0048] After enabling the information management object, the system administrator authorizes the information access rights of the user or role, and binds the metadata field with the management object;
[0049] In the metadata, define the accessible range of information resources, and bind a data type of information resources with information resource objects; for example, bind field elements in business documents with information management objects; in this way, the system can obtain business The field in the document is bound to the information management object, so that this field can be queried as the query condition of the database statement.
[0050] On the authorization interface, the system administrator grant...
Embodiment 2
[0075] This embodiment is to realize the multi-dimensional information authority in the information system, specifically including the following process:
[0076] 1. Set the main table information:
[0077] InfoManageObject: Store information management object configuration, mainly including information such as unique identifier id, name, description, global, data source table, conditions, and data display mode (tree, list) of information management objects.
[0078] MetadataInfoObjRel: Stores the relationship between metadata fields and information management objects, mainly including business document ID, table name, field name, management object Id, additional conditions (conditional restrictions in some special cases)
[0079] RoleInfoObjRights: stores the authorization data of role information management objects, mainly including organization Id, role Id, information management object name, authority ID (organization management object is organization Id, operator manageme...
Embodiment 3
[0096] This embodiment is used to illustrate that information permissions can be controlled vertically and horizontally, refer to image 3 , listed the three-tier organization of East China region, branch, and office, and there are marketing departments under the organization.
[0097] The goal of vertical control is that in the customer relationship, pre-sales customers are confidential data to any organization, and there are pre-sales customer data that can be viewed by superiors. The specific implementation method is:
[0098] 1. In the information permission setting: the system administrator starts the organization and salesperson management objects, and then selects the pre-sales customer business document in the metadata, and sets the organization field to bind the organization information management object, and the salesperson field to bind the business information management object.
[0099] 2. In information authority control: In this way, anyone in the system who h...
PUM
Abstract
Description
Claims
Application Information
- R&D Engineer
- R&D Manager
- IP Professional
- Industry Leading Data Capabilities
- Powerful AI technology
- Patent DNA Extraction
Browse by: Latest US Patents, China's latest patents, Technical Efficacy Thesaurus, Application Domain, Technology Topic, Popular Technical Reports.
© 2024 PatSnap. All rights reserved.Legal|Privacy policy|Modern Slavery Act Transparency Statement|Sitemap|About US| Contact US: help@patsnap.com