General System Design and Implementation of Rights

With the development of Internet technology , more and more enterprise application system based on WEB . Rights management functions is an indispensable part of each of the WEB system , but most of the application rights management functionality of the system development , has coupled high scalability of the disadvantages , this result basically every enterprise - level systems development when permissions management module must be re - developed . For these situations, we design a generic permission system . Firstly, an overview of the WEB development , in-depth study of the needs of the system architecture of the common rights , division of the system hierarchy . In-depth study on all levels in a variety of technical solutions . Analyze their pros and cons . Select a suitable technical solution based on demand , and to confirm design at all levels on the basis of the technical program , based on the overall architecture of Struts 2, Spring, Hibernate system ultimately arrive at a . Followed by the confirmation system architecture based on a detailed analysis of the function of the system of common rights on demand . Conducted in-depth research on access control model and the existing security framework . Analyze their pros and cons . System architecture has made it clear in the case , confirmed the RBAC model for access control model Acegi framework for the security framework . Recognized security framework based on the system from the database , the module division, detailed design of technical solutions for each module . Finally , on the basis of the detailed design of the system , the development of the common rights of the B / S structure of a Java-based system . And through the process of the application of the system in the actual project application performance for detailed testing and analysis , the ultimate proof that the system has a strong practical value .