Image forming apparatus and method for registering users of the image forming apparatus

The image forming apparatus restricts the reuse of deleted login names through a registration and determination system, addressing security and management issues by preventing unauthorized access and maintaining user identity integrity.

JP7871102B2Active Publication Date: 2026-06-08SHARP KK

Patent Information

Authority / Receiving Office
JP · JP
Patent Type
Patents
Current Assignee / Owner
SHARP KK
Filing Date
2022-05-30
Publication Date
2026-06-08

AI Technical Summary

Technical Problem

In multi-function machines, deleted user login names can be reused by other users, posing security and management issues, as existing systems do not effectively prevent the reuse of personal identification information even when it is in a prohibited state.

Method used

An image forming apparatus with a registration unit that associates personal identification information with users, a reuse prohibition determination unit to decide whether to prohibit the reuse of deleted login names, and a user registration determination unit to reject registration requests for prohibited login names based on specific criteria.

Benefits of technology

The solution effectively restricts the reuse of login names, enhancing user management and security by preventing unauthorized access and maintaining user identity integrity.

✦ Generated by Eureka AI based on patent content.

Smart Images

  • Figure 0007871102000001
    Figure 0007871102000001
  • Figure 0007871102000002
    Figure 0007871102000002
  • Figure 0007871102000003
    Figure 0007871102000003
Patent Text Reader

Abstract

To provide an image forming apparatus and a user registration method each allowing restriction of reuse of a login name.SOLUTION: In an image forming apparatus, personal identification information for identifying a user is registered in association with the user. If a request for deletion of a registered user is received, it is determined whether to forbid reuse of the personal identification information which is in association with the registered user for which the request for deletion is received. In response to a determination to forbid reuse of a piece of personal identification information, a request for registration of a user which the piece of personal identification information is associated with is refused.SELECTED DRAWING: Figure 4
Need to check novelty before this filing date? Find Prior Art

Description

Technical Field

[0001] The present disclosure relates to an image forming apparatus and the like.

Background Art

[0002] Generally, in a multi-function machine for business use, users are managed by performing user registration and user authentication prior to the users using the multi-function machine. Usually, the administrator of the multi-function machine assigns a unique login name to each user. The login names of registered users are different from each other, and no two or more registered users use the same login name.

[0003] In relation to user management, Patent Document 1 describes an in-house switch that monitors inputs related to personal identification information set in a prohibited use state. In this in-house switch, when no incorrect password input is detected for personal identification information set in a prohibited use state for a predetermined period, the prohibited use state of the personal identification information is released.

Prior Art Documents

Patent Documents

[0004]

Patent Document 1

Summary of the Invention

Problems to be Solved by the Invention

[0005] In a multi-function machine that performs user registration and authentication, when a user stops using the multi-function machine, the administrator of the multi-function machine usually deletes the registration of that user. When the user registration is deleted, there are no users using the login name of that user. For this reason, the login name becomes available for a user who newly performs user registration. However, from the viewpoints of, for example, user management and security, it may not be preferable for a person different from the original user to use the same login name.

[0006] Furthermore, in Patent Document 1, "personal identification information in a prohibited state" means that the use of the functions of the private branch exchange based on that personal identification information is prohibited, and does not mean that the use of the personal identification information itself is prohibited. According to Patent Document 1, authentication is performed using personal identification information even when it is in a prohibited state.

[0007] The purpose of this disclosure is to provide an image forming apparatus, etc., that can restrict the reuse of login names. [Means for solving the problem]

[0008] The image forming apparatus disclosed herein is characterized by comprising: a registration unit that registers personal identification information that identifies a user in association with the user; a reuse prohibition determination unit that, upon receiving a deletion request for a registered user, determines whether or not to prohibit the reuse of the personal identification information associated with the user who made the deletion request; and a user registration determination unit that, in accordance with the determination result of the reuse prohibition determination unit that the reuse of a particular personal identification information is prohibited, rejects the registration request of the user associated with that particular personal identification information.

[0009] The user registration method for an image forming apparatus disclosed herein is characterized by registering a user by associating personal identification information that identifies the user with the user, and when a deletion request for a registered user is received, determining whether or not to prohibit the reuse of the personal identification information associated with the user who made the deletion request, and rejecting the registration request of the user associated with the personal identification information if the determination result is to prohibit the reuse of the personal identification information. [Effects of the Invention]

[0010] According to this disclosure, it is possible to provide an image forming apparatus, etc., that can restrict the reuse of login names. [Brief explanation of the drawing]

[0011] [Figure 1] This is a diagram illustrating the functional configuration of the multifunction device in the first embodiment. [Figure 2]This figure illustrates the data structure of the user database and the deleted user database in the first embodiment. [Figure 3] This is a diagram illustrating the user deletion process in the first embodiment. [Figure 4] This is a diagram illustrating the user registration process in the first embodiment. [Figure 5] This figure illustrates an example of an error message displayed in the first embodiment. [Figure 6] This is a diagram illustrating the functional configuration of the multifunction device in the second embodiment. [Figure 7] This figure illustrates the data structure of the deleted user database in the second embodiment. [Figure 8] This is a diagram illustrating the process for releasing the reuse prohibition in the second embodiment. [Figure 9] This is a diagram illustrating the user registration process in the second embodiment. [Figure 10] This figure illustrates an example of a warning message displayed in the second embodiment. [Figure 11] This is a diagram illustrating the user deletion process in the third embodiment. [Figure 12] This figure illustrates the data structure of the deleted user database in the third embodiment. [Modes for carrying out the invention]

[0012] An embodiment for implementing this disclosure will be described below with reference to the drawings. Note that the following embodiment is merely an example for illustrating this disclosure, and the technical scope of this disclosure as described in the claims is not limited to the following description.

[0013] [1. First Embodiment] [1.1 Overall Structure] FIG. 1 is a diagram for explaining the functional configuration of the image forming apparatus 1 according to the present embodiment. The image forming apparatus 1, also called a multi-function printer (MFP), functions as a copying machine, a facsimile machine, a scanner device, a printer device, and an email terminal device. The image forming apparatus 1 includes a storage unit 3, a communication unit 9, an operation unit 11, a display unit 13, an image input unit 15, an image forming unit 17, a printing unit 19, a control unit 21, and a data bus 33.

[0014] The storage unit 3 is a functional unit in which various programs and various data necessary for the operation of the image forming apparatus 1 are stored. The storage unit 3 includes a recording device capable of temporary storage, such as a DRAM (Dynamic Random Access Memory). The storage unit 3 includes a non-temporary recording device, such as an SSD (Solid State Drive) composed of a semiconductor memory or an HDD (Hard Disk Drive) composed of a magnetic disk. Although the storage unit 3 is shown as one configuration for convenience of explanation, it may be configured as separate devices for each use, such as an area (main memory area) used for program execution, an area (auxiliary storage area) for storing programs and data, and an area used for caching.

[0015] In particular, the storage unit 3 includes a user database (DB) 5, a deleted user DB 7, and a setting storage unit 8. The user DB 5 is a database for storing information about registered users. The deleted user DB 7 is a database for storing information about users who have been deleted after user registration. The setting storage unit 8 stores the operation settings of the image forming apparatus 1. For example, the setting storage unit 8 stores a setting for enabling or disabling the reuse prohibition function.

[0016] FIG. 2(A) is a diagram for explaining the data structure of the user DB 5. The table of the user DB 5 is constituted by, for example, records 51. The record 51 includes each field such as a user ID 53, a login name 55, a last login date and time 57, the number of printed sheets 59, an authority group ID 61, and a registration-time authentication mode 63. The fields of the record 51 store various values given to one user. These values given to one user are also called the attributes of that user.

[0017] The user ID 53 is a field that stores, for example, the user ID given to one user. The value of the user ID 53 is an example of personal identification information. The user ID may be automatically given by the image forming apparatus 1 or may be given by an administrator. Also, the user ID is information that can uniquely identify a user, and it is preferable that there is no duplication among users.

[0018] The login name 55 is a field that stores, for example, the login name given to the user corresponding to one user ID. The value of the login name 55 is an example of personal identification information. The login name is used when authenticating a user in the image forming apparatus 1. Note that the user ID and the login name may be the same. Before using the image forming apparatus 1, the user logs in to the image forming apparatus 1 by inputting the login name from the operation unit 11. The control unit 21 identifies the user based on the login name input at the time of login. The control unit 21 stores the login date and time and the history of the functions of the image forming apparatus 1 used by the user in association with the login name in the user DB 5.

[0019] The last login date and time 57 is a field that stores, for example, the date and time when the user corresponding to one user ID last logged in to the image forming apparatus 1. The value of the last login date and time 57 is an example of the history of identification of a user performed based on personal identification information. The last login date and time may store the timing when the user logged in (the timing when login authentication was performed) or may store the timing when the user logged out.

[0020] The "Number of Printed Pages 59" field stores the number of pages printed by a user corresponding to a specific user ID using the image forming apparatus 1. The value of "Number of Printed Pages 59" is an example of the history of functions used by the user corresponding to a specific user ID using the image forming apparatus 1. Here, "Number of Printed Pages" may be the cumulative number of pages printed by the user using the image forming apparatus 1, or the number of pages printed when the user last logged in. It may also be the average number of pages printed over a predetermined period. Furthermore, "Number of Printed Pages" may include, for example, the number of pages printed on recording paper using the copy function, or the number of pages recorded using the printer function. Furthermore, "Number of Printed Pages" may include, for example, the number of pages output as images. For example, "Number of Printed Pages" may include the number of pages output to a file (e.g., a PDF file) using the scan function. For example, "Number of Printed Pages" may include the number of pages sent using the fax function.

[0021] The authorization group ID 61 is a field that stores the authorizations granted to a user corresponding to a single user ID. Authorizations include, for example, administrator authorizations, user authorizations, and guest authorizations. Of these, administrator authorizations are the strongest, and guest authorizations are the weakest. Users with administrator authorizations can use all the functions of the image forming apparatus 1. Users with guest authorizations can only use some of the functions of the image forming apparatus 1.

[0022] The registration authentication mode 63 is a field that stores, for example, the authentication mode used when the user was registered. The value of registration authentication mode 63 is an example of an authentication mode used for authentication based on the login name. An authentication mode is an operating mode that authenticates a user before the user can use the functions of the image forming apparatus 1. Examples of authentication modes include a regular authentication mode and a simplified authentication mode.

[0023] The regular authentication mode is an authentication mode in which the image forming apparatus 1 requests the user to directly enter a password when logging in. When authenticating in the regular authentication mode, the user must directly enter a string of characters that constitutes the password using the keyboard, numeric keypad, etc. on the operation unit 11. For username input, the user may also directly enter a string of characters that constitutes the username using the keyboard, numeric keypad, etc. on the operation unit 11, similar to the password. Alternatively, the image forming apparatus 1 may display a list of usernames on the display unit 13, and the user may input the username by selecting the desired username from the list using the operation unit 11.

[0024] Simplified authentication mode is an authentication mode in which the image forming apparatus 1 does not require the user to directly enter a password during login. In simplified authentication mode, the image forming apparatus 1 identifies the user based on the user's input, while simplifying or omitting the verification of the user's authenticity. Examples of simplified authentication modes include user number authentication mode and quick authentication mode.

[0025] In user number authentication mode, when registering a user, a unique number (for example, a sequential number corresponding to the user registration order) is set as the login name, but no password is set. Alternatively, the registration unit 31 may set a password consisting only of numbers (for example, the same sequential number as the login name). In user number authentication mode, the user can enter the login name and password using only the numeric keypad.

[0026] In quick authentication mode, user DB5 further has a field in record 51 that stores the image data of the icon, and stores it in association with the user's login name. When a user performs an operation to select the icon, control unit 21 reads the corresponding login name from user DB5 and performs login-related processing.

[0027] In quick authentication mode, password authentication may also be performed. In this case, user DB5 further has a field in record 51 for storing the password. When a string is stored in the password field corresponding to the selected icon, the control unit 21 compares the string stored in that field with the string entered from the operation unit 11 to perform password authentication.

[0028] Even when performing password authentication in quick authentication mode, direct password entry can be omitted. In this case, when the user selects an icon, the control unit 21 reads the corresponding login name and password from field 51 of the user DB 5 and performs authentication. The user can be authenticated without directly entering their login name and password.

[0029] In quick authentication mode, password authentication may be omitted. In this case, when the user selects an icon, the control unit 21 logs the user in without password authentication. Even in this case, the user only needs to select an icon and does not need to directly enter a string for the login name or password using the keyboard or numeric keypad. Furthermore, in this case, it is not necessary to include a field to store the password in record 51 of the user DB 5.

[0030] Figure 2(B) is a diagram illustrating the data structure of the Deleted Users DB7. The Deleted Users DB7 table consists of 71 records. Record 71 has fields such as Login Name 73, Deletion Date and Time 75, Last Login Date and Time 77, Print Count 79, and Authority Group ID 81.

[0031] Login name 73 is a field that stores, for example, the login name used by a deleted user. The login name is used in the image forming apparatus 1 to authenticate the user. Deletion date and time 75 is a field that stores, for example, the date and time when a user was deleted from the user registration of the image forming apparatus 1. Last login date and time 77 is a field that stores, for example, the date and time when a deleted user last logged in. Last login date and time 77 may store the date and time when the user last logged out instead of the date and time when the user last logged in.

[0032] The "Number of Printed Pages 79" field stores, for example, the number of pages printed by a deleted user using the image forming apparatus 1. The "Number of Printed Pages" may also be the cumulative number of pages printed by the user using the image forming apparatus 1. The "Number of Printed Pages" may also be the number of pages printed when the user last logged in. The "Number of Printed Pages" may also be the average number of pages printed by the user over a predetermined period. The "Number of Printed Pages" may include, for example, the number of pages printed on recording paper using the copy function, and the number of pages recorded using the printer function. The "Number of Printed Pages" may also include, for example, the number of pages output as images. The "Number of Printed Pages" may also include, for example, the number of pages output to a file (e.g., a PDF file) using the scan function. The "Number of Printed Pages" may also include, for example, the number of pages sent using the fax function.

[0033] The permission group ID 81 is a field that stores an identifier indicating the permissions granted to a deleted user, for example. Permissions include, for example, administrator permissions, user permissions, and guest permissions. Of these, administrator permissions are the strongest, and guest permissions are the weakest. Users with administrator permissions can use all functions of the image forming apparatus 1. Users with guest permissions can only use some functions of the image forming apparatus 1.

[0034] The communication unit 9 is a communication interface for wired communication and / or wireless communication. As a wired communication interface, the communication unit 9 may have a LAN (Local Area Network) interface. The communication unit 9 may have an interface for connecting to a telephone network such as a public telephone network. As a wireless communication interface, the communication unit 9 may have a wireless LAN interface with wireless communication functionality such as Wi-Fi. The communication unit 9 may have an interface that can connect to a mobile communication network such as an LTE (Long Term Evolution) network or a 5G network.

[0035] The operation unit 11 receives operation input from the user. For example, the operation unit 11 consists of hardware keys and software keys. The operation unit 11 also includes task keys for executing tasks such as sending a fax or scanning an image, and a cancel key for canceling an operation. The operation unit 11 may also include physical operation keys such as task keys, cancel keys, power keys, and power saving keys. The operation unit 11 may be integrated with the display unit 13 as a touch panel display.

[0036] The display unit 13 is a functional unit for displaying images and characters. For example, the display unit 13 is composed of a liquid crystal display (LCD) or an organic EL panel. The display unit 13 may be a standalone display device. Alternatively, the display unit 13 may include an externally connected display device. The display unit 13 may also be equipped with a speaker for outputting sound.

[0037] The image input unit 15 reads an image (document) and outputs it as image data. The image input unit 15 is composed of a general-purpose scanner (image input device). Alternatively, the image input unit 15 may receive image data from an external storage medium such as a USB memory stick. Or, the image input unit 15 may receive images via a network, for example.

[0038] The image forming unit 17 forms output image data based on the input image data. When the image forming apparatus 1 operates as a transmitting facsimile device, the output image data generated by the image forming unit 17 is transmitted to the destination via the communication unit 9. When the image forming apparatus 1 operates as a receiving facsimile device, copier, or printer, the output image data generated by the image forming unit 17 is printed onto a printing medium such as paper by the printing unit 19.

[0039] The printing unit 19 is a printing mechanism such as an inkjet printer or laser printer. The printing unit 19 prints the output image data formed by the image forming unit 17 onto a printing medium such as paper.

[0040] The control unit 21 realizes various functions by reading and executing various programs stored in the memory unit 3. The control unit 21 is composed of one or more control devices and control circuits. The control unit 21 is composed of, for example, a CPU (Central Processing Unit) or a SoC (System on a Chip).

[0041] The control unit 21 operates as a user deletion reception unit 23, a reuse prohibition determination unit 25, a user registration reception unit 27, a user registration determination unit 29, and a registration unit 31. The user deletion reception unit 23 executes a process to receive an operation (deletion request) to delete a registered user via the operation unit 11.

[0042] When the reuse prohibition determination unit 25 receives a request to delete a registered user, it executes a process to determine whether or not to prohibit the reuse of the login name associated with the user who made the deletion request. Here, "using a login name" means that in the user registration of the image forming apparatus 1, the administrator or the like assigns a string of characters as the login name of that user. "Reusing a login name" means that in the user registration of the image forming apparatus 1, the administrator or the like assigns a string of characters as the login name of a user, then deletes that user registration, and then assigns the same string of characters again as the login name to that user or another user. For example, "reusing the login name USER01" means that in the user registration of the image forming apparatus 1, the administrator performs user registration assigning the string USER01 as the login name to user U1, then deletes user U1's user registration, and then assigns the string USER01 again to user U1 or U2.

[0043] The user registration reception unit 27 executes a process to receive a registration request from a new user via the operation unit 11. The user registration determination unit 29 executes a process to determine whether or not to approve the registration request from the new user.

[0044] The user registration determination unit 29 executes a process to determine whether or not to allow user registration using the specified login name, based on the determination result of the reuse prohibition determination unit 25. If the user registration determination unit 29 determines that the specified login name is prohibited from reuse by the reuse prohibition determination unit 25, the user registration determination unit 29 determines to reject the user registration request. When it determines to reject the user registration request, the user registration determination unit 29 displays an error message using the display unit 13. On the other hand, if the user registration determination unit 29 determines that the specified login name is not prohibited from reuse by the reuse prohibition determination unit 25, the user registration determination unit 29 determines to allow the user registration. When it determines to allow user registration, the user registration determination unit 29 instructs the registration unit 31 to register the user using that login name.

[0045] The registration unit 31 performs the process of registering a login name that identifies a user, associating it with the user, according to the determination result of the user registration determination unit 29. More specifically, if the user registration determination unit 29 permits registration, the registration unit 31 performs the process of associating the user and the login name with each other and storing it in the user DB 5. On the other hand, if the user registration determination unit 29 rejects registration, the registration unit 31 does not perform the process of storing information about that user in the user DB 5. The data bus 33 connects the functional components of the image forming apparatus 1 and transmits data.

[0046] [1.2 User Deletion Process] Figure 3 is a diagram illustrating the user deletion process in this embodiment. Prior to the user deletion process, the administrator of the image forming apparatus 1 inputs a setting via the operation unit 11 to enable or disable the reuse prohibition function. The input setting is stored in the setting storage unit 8.

[0047] When the user deletion reception unit 23 receives an operation via the operation unit 11 to delete a registered user, it refers to the setting storage unit 8 to determine whether or not the reuse prohibition function is enabled (step S1). If the reuse prohibition function is enabled (yes in step S1), the reuse prohibition determination unit 25 determines whether or not to prohibit the reuse of that user's login name (reuse prohibition determination) (step S3).

[0048] The reuse prohibition determination unit 25 permits the reuse of a user's login name if it meets any of the following criteria (A1) to (A4). On the other hand, if it does not meet any of the criteria (A1) to (A4), the reuse prohibition determination unit 25 prohibits the reuse of that user's login name. (A1) In user DB5, if the value of the number of printed pages for that user is zero (59). (A2) If no valid value is stored in the user DB5 for the user's last login date and time 57. In other words, if the user has never logged in. Examples of cases where no valid value is stored include a null value, a date and time in the future beyond the current date and time, or a date and time earlier than the start date of operation of the image forming apparatus 1. (A3) In user DB5, if the value of authentication mode 63 at the time of user registration is simple authentication mode. (A4) When the user deletion reception unit 23 receives an operation via the operation unit 11 to delete all users registered in the user DB5 at once.

[0049] If it is determined in step S3 that reuse should be prohibited, the reuse prohibition determination unit 25 updates the deleted user DB7 (step S5). The reuse prohibition determination unit 25 reads the values ​​of the login name 55, last login date and time 57, number of printed pages 59, and authority group ID 61 from the user DB5 and copies them to the login name 73, last login date and time 77, number of printed pages 79, and authority group ID 81 of the deleted user DB7, respectively. The reuse prohibition determination unit 25 also stores the date and time this process was executed in the deletion date and time 75.

[0050] Next, the reuse prohibition determination unit 25 deletes the user record 51 specified in step S1 from the user DB 5 (step S7). If the answer in step S1 is "no", the control unit 21 proceeds to step S7 without going through steps S3 and S5. If it is determined in step S3 that reuse is "not prohibited", the control unit 21 proceeds to step S7 without going through step S5.

[0051] [1.3 User Registration Process] Figure 4 is a diagram illustrating the user registration process in this embodiment. First, the user registration reception unit 27 receives a registration request from a new user via the operation unit 11 (step S10). For example, a user who wishes to register or the administrator of the image forming apparatus 1 enters the desired login name via the operation unit 11. The operation unit 11 passes the entered login name to the user registration reception unit 27.

[0052] Next, the user registration determination unit 29 accesses the deleted user DB7 and determines whether or not there is a record 71 that stores the entered login name in login name 73 (step S11).

[0053] If a record 71 exists in the deleted user DB7 that stores the entered login name as login name 73 (step S11, "Yes"), the user registration determination unit 29 displays an error message using the display unit 13 (step S13). Figure 5 is an example of an error message displayed in step S13 in this embodiment. The error message in Figure 5 notifies the user that the login name is unavailable and prompts them to enter a different login name. In addition to these words, the entered login name may also be displayed in the error message. After displaying the error message, the control unit 21 returns to step S10.

[0054] If there is no record 71 in the deleted user DB7 that stores the entered login name in login name 73 (step S11, "No"), the registration unit 31 adds record 51 to the user DB5 (step S15). The added record 51 includes login name 55 that stores the entered login name.

[0055] [1.4 Effects] According to this embodiment, if the login name of a deleted user falls under any of (A1) to (A4) above, user registration using that login name can be permitted. On the other hand, if the login name of a deleted user does not fall under any of (A1) to (A4) above, user registration using that login name can be prohibited.

[0056] [1.5 Transformation] The reuse prohibition determination unit 25 uses (A1) to (A4) as the determination criteria, but it may use only some of (A1) to (A4) as the determination criteria, rather than all of them. For example, the reuse prohibition determination unit 25 may use (A1) to (A3) as the determination criteria and not use (A4) as the determination criteria.

[0057] While criterion (A1) uses the case where the user's print count is zero, the threshold can be anything other than zero. For example, a criterion of 100 or fewer print counts could be used. Furthermore, while criterion (A1) is based on the usage history of the printing function, only one of the criteria—either the number of monochrome prints or the number of color prints—may be used.

[0058] Furthermore, the reuse prohibition determination unit 25 may make a determination based on the usage history of other functions of the image forming apparatus 1, in addition to or in conjunction with the number of printed pages. As described above, the image forming apparatus 1 functions as a copier, facsimile machine, scanner, printer, and email terminal. For this reason, the reuse prohibition determination unit 25 may use, for example, the number of copies, the number of faxes sent per page, the number of faxes sent to a specific recipient per page, the number of emails sent, the number of emails sent to a specific recipient, the number of scanned pages, etc., as determination criteria.

[0059] In the determination criterion (A2), the presence or absence of the value stored in the last login date and time 57 of the user is used as the criterion, but the criterion may also be whether the date and time stored in the last login date and time 57 is before a specific date and time. For example, if the date and time stored in the last login date and time 57 is before March 30, 2019, reuse may be permitted, and if it is after April 1, 2019, reuse may be prohibited. Further, the reuse prohibition determination unit 25 may use as the determination criterion whether it is before a certain period or more from the date and time when the determination was executed. For example, if the date and time stored in the last login date and time 57 is more than one year before the date and time when the determination was executed, reuse may be permitted, and if one year has not passed, reuse may be prohibited.

[0060] In step S13, instead of displaying an error message, or together with displaying an error message, the user registration determination unit 29 may output a voice indicating an error from the speaker of the display unit 13.

[0061] [2. Second Embodiment] [2.1 Overall Configuration] FIG. 6 is a diagram for explaining the functional configuration of the image forming apparatus 90 of the present embodiment. The same reference numerals are given to the functional configurations common to the above-described image forming apparatus 1. Hereinafter, differences from the image forming apparatus 1 will be described.

[0062] Compared with the image forming apparatus 1, the image forming apparatus 90 has a different functional configuration of the control unit 91. The control unit 91 includes a release determination unit 93 and a release unit 95 in addition to the functional configuration of the control unit 21 of the image forming apparatus 1.

[0063] The release determination unit 93 determines whether the setting of reuse prohibition can be released for the login name set as reuse prohibited. The release unit 95 releases the setting of reuse prohibition set for the login name.

[0064] Furthermore, the setting storage unit 8 differs from the setting storage unit 8 of the first embodiment in that it stores a setting of whether or not to prohibit the removal of the restriction on reusing login names as one of the operation settings of the image forming apparatus 1. This setting is set according to input via the operation unit 11.

[0065] Figure 7 illustrates the structure of the records stored in the deleted user DB7 of this embodiment. The deleted user DB7 consists of record 111 instead of record 71. Record 111 has fields similar to those of record 71, as well as a reuse prohibition period 113 and a reuse prohibition release flag 115. The reuse prohibition period 113 is a field that stores the period during which the reuse of the login name is prohibited (reuse prohibition period). The reuse prohibition period ranges from zero to a predetermined period (e.g., 3 months, 1 year). A reuse prohibition period of zero means that no reuse prohibition period is set. If the use of the login name is to be permanently prohibited, the reuse prohibition period may be unlimited. Note that instead of storing the reuse prohibition period 113 in record 71 for each user, the one stored in the setting storage unit 8 may be used. The reuse prohibition release flag 115 is a field that stores a flag indicating that the reuse prohibition for the login name has been released.

[0066] [2.2 User Deletion Process] Referring to Figure 3, the user deletion process in this embodiment will be described. In this embodiment, when updating the deleted user DB7 in step S5, the reuse prohibition determination unit 25 receives input of the reuse prohibition period via the operation unit 11.

[0067] [2.3 Reuse Restriction Removal Process] FIG. 8 is a diagram for explaining the reuse prohibition release process in the present embodiment. When an operation to start the reuse prohibition release process is received via the operation unit 11, the release determination unit 93 displays, using the display unit 13, a list of login names registered in the deleted user DB 7 (step S31). The release determination unit 93 receives, via the operation unit 11, an operation to select a login name for which the reuse prohibition is to be released (step S33). For the selected login name, the release determination unit 93 determines whether to release the reuse prohibition (reuse prohibition release determination) (step S35). Regarding the list of login names displayed in step S31, for login names for which the release determination unit 93 does not permit the release of the reuse prohibition, they may not be displayed or may not be selectable.

[0068] In step S35, when the release determination unit 93 refers to the deleted user DB 7 and meets any of the following determination criteria (B1) to (B5), it does not permit or prohibits the release of the reuse prohibition for the selected login name. (B1) When a value of 1 or more is stored in the print count 79 corresponding to the selected login name 73. Or, when a date and time is stored in the last login date and time 77 corresponding to the selected login name 73 (that is, when the login name 73 has been logged in at least once). (B2) When the administrator authority is stored in the authority group ID 81 corresponding to the selected login name 73. (B3) At the current time (when the reuse prohibition release process is executed), when the reuse prohibition period of 113 corresponding to the selected login name 73 has not elapsed since the deletion date and time 75 corresponding to the selected login name 73. (B4) When an indefinite period is stored in the reuse prohibition period 113 corresponding to the selected login name 73 in the deleted user DB 7. (B5) When the setting storage unit 8 stores a setting that prohibits the release of the reuse prohibition of the login name. On the other hand, when the release determination unit 93 does not meet any of the determination criteria (B1) to (B5), it permits the release of the reuse prohibition of that login name.

[0069] If the release determination unit 93 permits the lifting of the restriction on reusing login names (step S35, "permitted"), the release determination unit 93 updates the deleted user DB7. That is, in the deleted user DB7, the release determination unit 93 stores a flag indicating that the restriction on reuse has been lifted in the reuse restriction release flag 115 of the record 111 corresponding to the login name 73 (step S37). On the other hand, if the release determination unit 93 prohibits the lifting of the restriction on reusing login names (step S35, "denied"), the release determination unit 93 terminates the process.

[0070] [2.4 User Registration Process] Figure 9 is a diagram illustrating the user registration process in this embodiment. When the user registration receiving unit 27 receives an input requesting user registration via the operation unit 11, the user registration determination unit 29 determines whether or not the login name specified in the user registration request is registered in the deleted user DB7 (step S51).

[0071] If the login name is registered in the deleted user DB7 (step S51, "yes"), the user registration determination unit 29 determines whether or not the release flag is stored in the reuse prohibition release flag 115 of the record 111 corresponding to the login name 73 (step S53).

[0072] If the release flag is not stored in the reuse prohibition release flag 115 (step S53, "No"), the user registration determination unit 29 displays an error message 87 using the display unit 13 (step S55).

[0073] On the other hand, if the reuse prohibition release flag 115 contains a release flag (step S53, "yes"), the user registration determination unit 29 displays a warning message 119 using the display unit 13 (step S57). The warning message 119 also asks whether the user wants to reuse the login name (button 119a) or not (button 119b) based on this warning (step S59).

[0074] Figure 10 is a diagram illustrating an example of a warning message displayed in step S57. Warning message 119 warns that the login name being used for user registration has been used in the past.

[0075] Furthermore, the user registration determination unit 29 may read some or all of the values ​​of the field corresponding to the login name from record 111 of the deleted user DB7 and display them together with the warning message 119. For example, the user registration determination unit 29 may read the values ​​of the deletion date and time 75 and the reuse prohibition period 113 corresponding to the login name and add "Deletion date and time: January 1, 2020 Reuse prohibition period: 1 year" to the warning message 119. Alternatively, for example, the user registration determination unit 29 may read the value of the number of prints 79 corresponding to the login name and add "Number of prints: 0" to the warning message 119. Alternatively, for example, the user registration determination unit 29 may read the value of the authority group ID 81 corresponding to the login name and add the authority group to which the authority group ID indicated by that value belongs to the warning message 119, such as "Authority group: Guest authority". These additional displays may also be displayed together with the error message 87 in step S55.

[0076] If the user selects button 119a via the operation unit 11 to indicate that they wish to reuse the login name (step S59, "Yes"), the user registration determination unit 29 adds a new record 51 to the user DB 5 and deletes record 111 from the deleted user DB 7 according to the user registration using that login name (step S61).

[0077] On the other hand, if the user receives input via the operation unit 11 indicating that they will not reuse the login name (by selecting button 119b) (step S59, "No"), the user registration determination unit 29 terminates the process without registering a user using that login name.

[0078] Furthermore, if in step S51 the user registration determination unit 29 determines that the login name specified in the user registration request is not registered in the deleted user DB7 (step S51, "No"), the user registration determination unit 29 updates the user DB5. That is, the user registration determination unit 29 adds a new record 51 to the user DB5 according to the user registration using that login name (step S63) and terminates the process.

[0079] [2.5 Effects] According to this embodiment, it is possible to allow the reuse of a login name that has been prohibited from being reused. In this case, permission can be granted according to the attributes of the former user (the user who previously used the login name to be reused), such as the usage history (number of printed pages), login history (last login date and time), whether or not there are administrator privileges (privilege group ID), and the time elapsed since the login name was deleted (deletion date and time). Furthermore, permission can be granted according to the settings of the image forming apparatus 120 stored in the setting storage unit 8.

[0080] [2.6 Transformation] In step S37 of the process to lift the restriction on reuse, the release determination unit 93 stores a flag in the reuse restriction release flag 115 of the deleted user DB7 when it permits the lifting of the restriction on reuse of the login name. Alternatively, the release determination unit 93 may delete the record 111 containing that login name from the deleted user DB7. In this case, the deleted user DB7 can omit the reuse restriction release flag 115 from record 111.

[0081] Just before the user registration acceptance unit 27 accepts the execution of the user registration process and the user registration determination unit 29 starts step S51, the release determination unit 93 may perform the reuse prohibition release determination in step S35 for all login names registered in the deleted user DB7. Depending on the result, the release determination unit 93 stores a flag in the reuse prohibition release flag 115. In this way, even if the reuse prohibition release process is not explicitly executed, the reuse of login names whose reuse prohibition period has expired can be permitted.

[0082] The reuse prohibition period 113 may store the date and time when the reuse prohibition period expires, instead of storing the length of the period during which reuse is prohibited. In this case, the following criterion (B3a) is used instead of criterion (B3). (B3a) If the current time (the time when the reuse ban removal process was executed) is earlier than the reuse ban period 113 corresponding to that login name 73.

[0083] [3. Third Embodiment] In this embodiment, an image forming apparatus 90 is used, similar to the second embodiment. The main difference from the second embodiment is the timing of the determination to release the reuse prohibition. In this embodiment, the determination to release the reuse prohibition is performed following the user deletion process.

[0084] [3.1 User Deletion Process] Figure 11 is a diagram illustrating the user deletion process in this embodiment. When the user deletion reception unit 23 receives an operation to delete a registered user via the operation unit 11, it refers to the setting storage unit 8 and determines whether or not the reuse prohibition function is enabled (step S71). If the reuse prohibition function is enabled (yes in step S71), the reuse prohibition determination unit 25 determines whether or not to prohibit the reuse of that user's login name (step S73). The reuse prohibition determination in step S73 is performed based on the determination criteria (A1) to (A4), similar to step S3.

[0085] If it is determined in step S73 that reuse should be prohibited, the reuse prohibition determination unit 25 updates the deleted user DB7 (step S75). The reuse prohibition determination unit 25 reads the values ​​of the login name 55, last login date and time 57, number of printed pages 59, and authority group ID 61 from the user DB5. Then, the reuse prohibition determination unit 25 copies the read values ​​to the login name 73, last login date and time 77, number of printed pages 79, and authority group ID 81 of record 111, respectively. The deletion date and time 75 stores the date and time when this process was executed.

[0086] At this time, the reuse prohibition determination unit 25 may use the display unit 13 to display a message asking for the reuse prohibition period for the user's login name that is to be deleted. Also, if the reuse prohibition period is entered via the operation unit 11 in response to this message, that input may be stored in the reuse prohibition period 113.

[0087] Next, the release determination unit 93 performs a determination to release the reuse ban on the login name of the user to be deleted (step S77). The reuse ban release determination in step S77 is performed based on the determination criteria (B1) to (B5), similar to step S35.

[0088] Figure 12 illustrates the structure of record 131 stored in the deleted user DB7 of this embodiment. Compared to record 111, record 131 differs in that it has a release prohibition flag 133 instead of a reuse prohibition release flag 115. The release prohibition flag 133 is a field that stores a flag indicating that the release of the reuse prohibition for that login name is prohibited.

[0089] If the release determination unit 93 prohibits the lifting of the restriction on reusing a login name (step S77, "not permitted"), the release determination unit 93 updates the deleted user DB7. That is, in the deleted user DB7, the release determination unit 93 stores a flag indicating that the lifting of the restriction on reusing is prohibited in the release prohibition flag 133 corresponding to the login name 73 (step S79). In this case, in step S35, the release determination unit 93 refers to the release prohibition flag instead of the determination criteria (B1), (B2), and (B4), and if the release prohibition flag is stored, it does not permit or prohibits the lifting of the restriction on reusing that login name.

[0090] Finally, the reuse prohibition determination unit 25 deletes the user record 51 specified in step S1 from the user DB 5 (step S81). If the answer is "No" in step S71, "Do not prohibit" in step S73, or "Not permitted" in step S77, the control unit 91 proceeds to step S81.

[0091] [3.2 Effects] According to this embodiment, the determination to lift the reuse prohibition is performed following the determination to prohibit reuse. Therefore, the deleted user DB7 can be simplified. For example, in the deleted user DB7, the last login date and time 77, the number of printed pages 79, and the authority group ID 81 may be omitted from record 111. Furthermore, according to this embodiment, in the reuse prohibition lifting process in Figure 8, the reuse prohibition lifting determination in step S35 can be omitted.

[0092] [4. Others] This disclosure is not limited to the embodiments and variations described above, and various modifications are possible. That is, embodiments obtained by combining technical means that are appropriately modified without departing from the gist of this disclosure are also included in the technical scope of this disclosure.

[0093] In the above-described embodiment, for example, the administrator of the image forming apparatus 1 performed various operations on the image forming apparatus 1 via the operation unit 11. Alternatively, the administrator may perform operations from a terminal device such as a personal computer, tablet, or smartphone. In this case, the terminal device is connected to the communication unit 9 of the image forming apparatus 1 via a data communication network such as a LAN or telephone line, enabling data communication. The administrator performs the desired operations from an input device such as a keyboard on the terminal device. Specifically, the administrator may, for example, submit a deletion request to the user deletion reception unit 23, a new user registration request to the user registration reception unit 27, or perform setting operations to enable / disable the reuse prohibition function.

[0094] In the embodiments, the programs that run in each device are programs that control the CPU and the like (programs that make the computer function) in order to realize the functions of the embodiments described above. The information handled by these devices is temporarily stored in a temporary storage device (for example, RAM) during processing, and then stored in storage devices such as various ROMs (Read Only Memory) and HDDs, and read, modified, and written by the CPU as needed.

[0095] Here, the recording medium for storing the program may be any of the following: semiconductor media (e.g., ROM, non-volatile memory cards, etc.), optical recording media / magneto-optical recording media (e.g., DVD (Digital Versatile Disc), MO (Magneto Optical Disc), MD (Mini Disc), CD (Compact Disc), BD (Blu-ray® Disc), etc.), magnetic recording media (e.g., magnetic tape, flexible disk, etc.). Furthermore, in addition to realizing the functions of the embodiments described above by executing the loaded program, the functions of this disclosure may also be realized by processing in cooperation with the operating system or other application programs, etc., based on the instructions of the program.

[0096] Furthermore, when distributing the program to the market, it can be stored on a portable storage medium and distributed, or transferred to a server computer connected via a network such as the Internet. In this case, the storage device of the server computer is, of course, also included in this disclosure. [Explanation of symbols]

[0097] 1.90 Image forming apparatus 3 Storage section 5. User Database (Database, DB) 7. Delete user database (Database, DB) 8. Setting memory section 9 Communications Department 11 Control section 13 Display section 15 Image Input Section 17 Image forming unit 19 Printing Department 21, 91 Control Unit 23 User Deletion Request Department 25 Reuse prohibition determination section 27 User Registration Department 29 User Registration Determination Unit 31 Registration Department 33 buses Records 51, 71, 111, 131 User ID 53 Login names 55, 73 Last login date and time 57, 77 Number of printed sheets 59, 79 Authority group ID 61, 81 Authentication mode at registration 63 Deletion date and time 75 Error message 87 Release determination unit 93 Release unit 95 Reuse prohibition period 113 Reuse prohibition release flag 115 Warning message 119 Buttons 119a, 119b Release prohibition flag 133

Claims

1. A registration unit that registers personal identification information to identify a user and associates it with the user, When a deletion request for a registered user is received, a reuse prohibition determination unit determines whether or not to prohibit the reuse of personal identification information associated with the user who made the deletion request, In response to the determination by the reuse prohibition determination unit that the reuse of a personal identification information is prohibited, the user registration determination unit rejects the registration request of the user associated with the personal identification information. An image forming apparatus characterized by comprising:

2. The image forming apparatus according to claim 1, characterized in that the reuse prohibition determination unit determines to prohibit reuse according to the attributes assigned to the user who received the deletion request.

3. The aforementioned attributes are, History of user identification based on personally identifiable information, The history of operations performed by users identified based on personally identifiable information, and Types of Personal Identifiable Information The image forming apparatus according to claim 2, characterized by comprising at least one of the following.

4. The image forming apparatus according to claim 1, characterized in that, when a request is made to delete all registered users at once, the reuse prohibition determination unit permits the reuse of personal identification information associated with all of the users.

5. The image forming apparatus according to any one of claims 1 to 4, further comprising a deactivation unit for lifting the prohibition on the reuse of personal identification information.

6. The image forming apparatus according to claim 5, characterized in that the release unit releases the prohibition on reuse of personal identification information in accordance with the personal identification information or the attributes assigned to the user associated with the personal identification information.

7. The release unit is such that the attribute is The history of user identification performed based on the aforementioned personal identification information, The history of operations performed by the user identified based on the aforementioned personal identification information, Administrator privileges granted to the user associated with the aforementioned personal identification information, and Period during which the reuse of the aforementioned personal identification information is prohibited The image forming apparatus according to claim 6, characterized in that if none of the above conditions apply, the prohibition on the reuse of the personal identification information is lifted.

8. Register personally identifiable information that identifies the user and associate it with the user. When a request to delete a registered user is received, a determination is made as to whether or not to prohibit the reuse of the personal identification information associated with the user who made the deletion request. In accordance with the determination that the reuse of a single personally identifiable information is prohibited, the registration request of the user associated with that personally identifiable information will be rejected. A method for registering users of an image forming apparatus, characterized by the above.