The Design And Implementation Of The Planning Construction System Based On RBAC Access Control

Role-Based Access Control (RBAC) is one effective access control way of implementation security strategy facing the enterprise. Its basic idea is that various of authority of system operation is not awarded to the concrete user directly but establishes a role set between the user set and the authority set. Each of the role corresponds a group of the corresponding authority. Once the user has been assigned the appropriate role, this user has the role of all operation authority. The advantage of doing like this is that it's not needed to carry on the operation of assigning authority each time when found users but only to assign role corresponded the user. Moreover, compared to user's authority change, the role jurisdiction change will have little many. This will simplify the user's privilege management and reduce system costs.Now, enterprise-class applications use more and more open source framework,such as Spring and Struts and so on . In order to achieve the authority control in these constructions, there appeared many new techniques based on RBAC. And Acegi is one security framework based on the Spring Framework, which can integrate with the current popular Web container seamless .It uses the Spring's way to provide the security and the authentication services, including using the program mode of Bean Context, the interceptor and facing the connection. Through careful Acegi security system configuration can easily be suitable for the complex security needs.This article introduced the RBAC model, and analyzed the Acegi technology at first. And then analyzed the demand of planning to construct information system (hereafter refered to CPMIS) briefly and designed model framework, architecture, application development model, application logical organization and also the basic work flow system platform of the system.It also analyzed the real system database server and the host of performance of the application Server.The article mainly analyzed the authority control and designed the authority management of the CPMIS system. Mainly described the realization process of the jurisdiction management in the system construction projects. It also proposed the innovation and the deficiency of this system in the authority management area at the end.