| Along with the development of the enterprise information applications, more and more enterprises use the information management system which is based on the B/S. All the systems need the function of "Access Control" which is the main method to accomplish the security of the information of the enterprises and their customers.The thesis has gave an outline of the importance and implementation methods of the current "Access Control" technology at the first place, then introduced some related concepts and accomplishment methods of the role-based "Access Control" technology. It also introduced some related technology of Struts, Hibernate stated in the information management system and java EE platform. It would be very clear in system architecture and distinct in code gradation if the java EE design had been used in the system, it would also be more convenient to maintain the system later as well as using the "add" and "delete" functions.The thesis has analyzed the demand of the general permission management system and described each functional module. The system has adopted the RBAC thought and well-designed in role, position, organization, resource and limits of authority. The relationship between those five entities have been configured and classified in system. The design characteristic of the system has been focused in thesis. The system would be more general used, flexible and practical by providing customized design in the operation of certification and authorization. |
PDF Full Text Request