| The access control is a key content of the information security protection mechanism,and it is one of the main methods to realize the data cryptography and integrationmechanism.At first the thesis describes the applied status of the access control, and analyzes theshortages of the two traditional methods of the access control in user's own hands and themandatory. RBAC separates the user and permission by the role. The user acquires therelevant permissions through acquiring the role, which makes the privilege managementsmarter and more efficient. Then the thesis summarizes the characteristics of J2EE andStruts. The thesis adopts the Struts infrastructure to realize the system. The design mind isclear, laying a right base for the future system's maintenance and updates.The thesis analyzes the demand of the universal privilege management system,illustrates the design thoughts of the system, and designs the entities of user (group),resource, role, permission, operation type, resource type, and so on. By applying RBACthought, introduces the role's concept to design the system, making the privilegemanagement more convenient, easier, more efficient, and smarter in authorized mechanism.According to the design mind, designs the database, and illustrates the database verydetailedly. The thesis illustrates the design of the system's key classes, and shows thedesign and implementation of the modules apiece. Finally, the application project whichcompiles the privilege management by calling the system's API validates the correctnessand practicability of "Struts-based Universal Privilege Management System". |
PDF Full Text Request