Design And Implementation Of User Permission Management Information System Based On RBAC

Management Information System has deeply applied in various industries of society as while as the development of global networking. At the same time, the System safety is increasingly becoming a serious problem. Management Information System is a complicated man-machine interactive system. Its each link could be security threat and access control is a very important role in safety system, so ensure the safety is the primary problem.As management information system based on enterprise for an example in this paper, to the current problems of repeated development of organization, user authentication and access control module, this thesis designed a common user permission management system of Role Based Access Control (RBAC) which can conduct interface integration, data integration, and process integration. The design goal is to realize enterprise office automatic system, informationization and automation of management and business, reduce enterprise main business operating costs.This system develops for three-tier architecture by visual studio. Database is Microsoft’s SQLServer, data access uses ADO.NET technology, business logic layer is using C#language, the interface layer is mainly using ASP.NET and JQuery framework. This system mainly has three parts:data access services, user permission access control management, application module and application system integration. In the data access service, in view of the current main database including SQLServer database, Oracle database, Mysql database, DB2database and so on. It all has realized the data access class, can be configured to connect the database directly. Data access is using the server-side pages and client-side pages, to reduce the database interaction, to improve the user experience. User permission access control management mainly includes six parts:organizational management, user management, role management, resource management, authorization control and security audit. It administrates the user, organization, roles, page, application module tabs, navigation menus, operation of the whole system, records the operation of the user. It has specially designed a set of coarse-grained data access interface for application integration and system, develop new application modules and systems based on the this interface, and their user permissions can be unified to user permission management system to administrate.This system has realized the separation of user and permission, can dynamic distribution rights for the user. It has characters of permissions distribution intuitively, good scalability, supporting jobs and changing permissions.