50results about How to "Improve the efficiency of authority management" patented technology

The invention discloses an authority management method and device. The method comprises the steps that a joining request of a first user meeting the entry condition is sent to a preset block chain; anoperation authority of the first user is configured according to the role identity that the first user joins in the block chain; whether or not the operation authority comes into effect in the blockchain is judged according to a consensus mechanism; and if it is judged that the operation authority comes into effect in the block chain according to the consensus mechanism, a preset approval operation is executed on the first user. According to the authority management method and device, the technical problems that the authority management on the block chain is low in efficiency and too centralized are solved; decentralized authority management is achieved, a new user or a new node can join in the block chain through the consensus mechanism without operation configuration of a system administrator, and meanwhile on-chain members can be aware of joining of the new node immediately; and the authority management efficiency on the block chain is greatly improved.

The invention relates to the technical field of micro-service calling, and discloses an authority management method and device based on micro-service calling and a storage medium. The method comprisesthe following steps: obtaining a calling request sent by a client for calling a micro-service; acquiring a request uniform resource locator (URL) according to the calling request; obtaining an IP address of the client, and determining a micro-service identity corresponding to the client according to the IP address; based on the micro-service identity, the request URL and the service authority configuration table corresponding to the client, determining whether the client has the access authority of accessing the micro-service or not, wherein at least one group corresponding to the micro-service identity and an interface address corresponding to each group in the at least one group are configured in the service authority configuration table. According to the method and device, authority management of micro-service calling can be simply, conveniently and quickly completed under the condition of no user information.

The invention discloses an attendance setting method of a system. The attendance setting method comprises the following steps of setting an attendance rule for a role according to the job property and the work content of the role in the system, wherein the role is an independent individual rather than a group / category, one role during the same time interval can be only associated with a unique user, and one user is associated with one or more roles; associating the user with one or more roles, and selecting one role associated with the user as a main role of the user; carrying out attendance, by a worker, according to the attendance rule corresponding to the main role associated with the user corresponding to the worker. In the attendance setting method, the attendance rule does not need to be set for the worker when the worker is new recruited and the attendance rule does not need to be changed for the worker when the worker is subjected to post transfer.

The invention discloses a one-to-one authority authorization method and system on a user based on roles. The method comprises the steps of 1, building the roles, wherein each role is an independent individual, and is not in a group and / or a category; 2, authorizing the roles built in the first step separately; 3, associating the user to the roles, wherein in the same time frame, one role can be only associated to sole user, while one user can be associated to one or more roles. According to the one-to-one authority authorization method and system on the user based on the roles, the roles are independent individuals, and are different from those of traditional group and / or category properties, and in the same time frame, one role can be associated to sole user, thus the authority management efficiency in the system using process is sharply improved, dynamic authorization is simpler, more convenient, and clearer, and the efficiency and reliability in authority arrangement are improved.

The invention discloses a system dispatching method. The method includes: determining dispatched tasks, wherein the tasks which need to be dispatched are determined, determining dispatched objects, wherein the dispatched objects are determined, the objects are roles, the roles are independent individuals rather than groups / classes, one role can only be associated with a unique user in the same time period, and one user is associated with one or more roles; and carrying out dispatching, wherein the tasks which need to be dispatched are distributed to the dispatched roles. According to the method, the tasks are distributed to the roles, the user obtains the tasks through associations with the role, the association of an employee and the role is canceled when a turnover of the employee occurs, a newly recruited employee is directly enabled to be associated with the role without the need for re-dispatching for the newly recruited employee, and operations are convenient and quick; the association of an employee and the original role is canceled when position transferring of the employee occurs, the tasks dispatched for the new role can be automatically obtained by associating with the new role; and for a dispatcher, no operation needs to be carried out when the turnover or position transferring occurs.

The invention provides a database authority management method and device, and relates to the technical field of communication. The database authority management method is applied to authority management equipment. The authority management equipment is connected with at least one database, wherein at least one logical entity and access authorities of different users to each logical entity are set in the authority management equipment; and each logical entity corresponds to at least two data tables of the same type, and the description information of each logical entity comprises the type of thecorresponding data table and the identification of the database to which each corresponding data table belongs. The database authority management method comprises the following steps: the authority management equipment acquires metadata of a data table in a connected database; and then, the authority management equipment determines a target logic entity corresponding to the data table according to the metadata of the data table, then, the authority management equipment determines the access authority of the user to the target logic entity, and configures the access authority of the user to the data table in the database to which the data table belongs according to the access authority of the user to the target logic entity.

The invention discloses an auditing method for form data operation, which comprises the following steps: a role in a system is created, the role is an independent individual, one role can only be associated with a unique user at the same time period, and one user is associated with one or more roles; one or more roles in the system are selected as approvers, and each approver is authorized to haveaudit privileges for the operation of the form data; an audit request for an operation for which the requestor submits data for a form is audited; the approval request is audited by an approver who has the approval authority for the operation on the form data. As the audit of the invention has only one audit step, once the audit is agreed / passed or disagreed / not passed, the audit task ends without creating a process, and the audit cycle of the form data operation is shortened. The auditor adopts the role of an independent individual, and can realize the seamless transfer of audit authority when the employee leaves office or changes his post, which will not affect the normal operation of the enterprise, and also avoid the risk of confidential information leakage.

The invention discloses an examination and approval task transfer method based on an improved RBAC authority control mechanism. The method includes the steps that a role is created in a system, the role is an independent individual nature role, one independent individual nature role can only be associated with a unique user in the same time period, and one user is associated with one or more independent individual nature roles; a transferring person obtains an examination and approval task in the examination and approval process; the transferring person transfers the examination and approval task to a transferred person, and the transferred person is one independent individual nature role. According to the examination and approval task transfer method based on the improved RBAC authority control mechanism, the transferred person adopts the independent individual nature role, when an employee corresponding to the user associated with the role of the transferred person leaves or is transferred, the original association is simply released, and the user corresponding to the new employee is associated with a role to automatically obtain all the currently transferred examination and approval tasks of the role, and the handover of the examination and approval task is achieved through the association of the role in the meantime. The workload is small, and seamless docking can be achieved, lag or omission of transferring the examination and approval tasks cannot appear, and it is ensured that urgent tasks are dealt with in a timely manner.

The invention discloses a management method of an instant messaging account in a management system, which comprises the following steps: creating a system role, and the role is an independent individual; according to the work content of the role in the management system is role-related role instant messaging account, at the same time, a role-related instant messaging account can only be associatedwith one role, and a role can only be associated with one role-related instant messaging account; establishing the association relationship between users and roles, and taking the role-based instantmessaging accounts associated with all roles associated with users as the role-based instant messaging accounts of the users and / or the employees corresponding to the users. The employee of the invention obtains the instant messaging account number of the role nature through the role associated with the corresponding user, and when the employee leaves office, the association between the user corresponding to the employee and the role is canceled, so that the employee who leaves office automatically loses the authority, thereby avoiding the risk of revealing the confidential information of theenterprise. Employee transfer, can achieve seamless docking, there will be no communication account handover delay or omission.

The invention discloses a form operation permission authorization method based on a role. The method comprises the following steps that: selecting an authorized role: selecting one or a plurality of roles as authorized roles, wherein each role is an independent individual but is not groups / categories, one role in the same time period only can be associated with a unique user, and one user is associated with one or a plurality or roles; selecting a form: when the number of the selected authorized role is one and the number of the selected form is one, displaying the existing permission state of the authorized role for the selected form; when the number of the selected forms is at least two, displaying blank form operation permission; carrying out form operation permission authorization on the authorized form; and after above steps are finished, storing the permission of the authorized role. By use of the method, the authorization efficiency of the form operation permission is improved, the method is simple in operation, the safety performance of a system is improved, and a risk that losses are caused for enterprises due to the leakage of information can be reduced.

The invention provides an organizational structure chart generating method based on one-to-one correspondence of roles and users, and an applying method. The generating method comprises the steps of: S1, establishing new departments and selecting higher departments for the new departments if existing departments exist; S2, creating new roles, selecting a department for the new roles and authorizing the roles according to work content of the roles; S3, creating employees, writing the names of the employees, generating a unique user for each employee, and associating each user with one or more roles, wherein one role can only be associated with a unique user in the same period; S4, generating an organizational structure chart according to the hierarchical relationship between departments, the belonging relationship between the roles and the departments, the association relationship between the users and the roles and the association relationship between the users and the employees, wherein user information displayed in the organizational structure chart includes the names and the roles of the users. The organizational structure chart can display the names and the roles of employees and each role is only associated with one employee, so that the responsibility of each employee can be known clearly.

The invention discloses a method for supervising approval operation, authorization operation and form operation. The method comprises the following steps: creating roles in a system, wherein the roles are independent individuals, and in the same period, one role can only associate with only one user, and one user can associate with one or more roles; when the role executes approval / authorization / form operation, recording the role executing the operation; setting one or more roles as a monitoring role / monitored role, and setting a monitored role / monitoring role for each monitoring role / monitored role; and through the monitoring role, monitoring the approval / authorization / form operation recordings executed by the monitored role. The monitoring and monitored subjects are independent individual roles respectively; work content of users / staffs is distinguished according to post number / station number, and each post number / station number is corresponding to one independent individual role; setting of supervision authority is realized for each role; monitoring and monitored authorities are subjected to refined authorization; and the method meets actual operation and use requirements of enterprises.

The invention relates to the field of system performance optimization, and discloses a multi-system data interaction method and device, computer equipment and a storage medium. The method comprises the following steps: obtaining the login information of the user in the specified loging-in platform; querying post information of the user in a specified authority system according to the login information; determining the user role of the user in a plurality of specified service systems according to the post information, and enabling each specified service system to correspond to one user role; acquiring menu data matched with the user role from a specified service system; and generating a plurality of operation items of the specified login platform according to the menu data, wherein the operation items are used for executing service operations corresponding to the menu data on the specified service system. According to the invention, the management efficiency of multi-system data can beimproved.

The invention discloses a shortcut function setting method. The method includes the steps of setting shortcut menus and newly-added shortcut forms, wherein the step of setting the shortcut menus includes the substeps of setting a shortcut menu inlet, setting the shortcut menus, displaying the shortcut menus through the shortcut menu inlet and displaying the shortcut menu selected in the second step through the shortcut menu inlet; selecting any shortcut menu in the first step according to needs, and displaying a function interface corresponding to the shortcut menu. The checking and operating of the frequently-used menus and the newly adding of the forms can be conveniently and rapidly completed, and the office efficiency is improved; a role can only be related to a unique user at the same time duration, the user only needs to be related to a new role when the user gets a new job or is transferred to a new position, then the frequently-used shortcut menu corresponding to the role can be obtained through the shortcut menu inlet, the form with newly-added authority corresponding to the role can also be obtained through a newly-added shortcut form inlet, and the authority management efficiency in the use of a system is greatly improved.

The invention discloses a default right configuration method and a default right configuration unit. The method includes the following steps: a default system module structure table is created in a right configuration system; a default module is configured, and data is recorded into the default system module structure table; a new user ID (Identity) is added into a user database table in the right configuration system, so that a user record is generated, and the system automatically allocates an integral unique bit ID number which is greater than 0; according to a resource name field in the default system module structure table, a corresponding resource record in the default system module structure table is automatically connected, and according to the bit ID number which is automatically allocated by the system when the user is appended, the initial data 0 on the corresponding bit in a set of character string formed by 0 by default in the right attribute field in the record corresponding to the resource in the default system module structure table is changed into 1. The method and unit disclosed by the invention can more rapidly and efficiently allocate the functions, modules, buttons and other public resources of the system to all system users.

The embodiment of the invention relates to a user right information generating method. The user right information generating method comprises the following steps: generating a user right mark rule list, and inquiring a mechanism information management list to obtain mechanism information, wherein the mechanism information comprises a mechanism name and an incidence relation; analyzing the mechanism name of a primary mechanism; according to rule information of right mark content, acquiring the right mark content of a primary administrator user; matching the right mark content with the mechanism information management list to obtain mechanism information of a matched first primary mechanism, wherein the mechanism information comprises a first mechanism name and a first incidence relation; according to the first incidence relation, determining the mechanism information of a subordinate incidence mechanism of the first primary mechanism, namely a first secondary mechanism; according to right attribute rule information, configuring the right attribute of the first administrator user, generating secondary management right corresponding to the first mechanism name and a primary management right corresponding to the second mechanism name; and according to the right mark content and the right attribute of the primary administrator user, generating right information of the primary administrator user.

The invention relates to the technical field of equipment control, and provides an equipment permission configuration method and device, electronic equipment, a system and a storage medium. The methodcomprises the steps of determining a target operation equipment identifier of a selection operation in response to the selection operation of a user on an equipment interaction interface, displayingan equipment sharing interaction interface, and obtaining a sharing object identifier and permission sharing information in response to a setting operation of the user, establishing a binding relationship among the target operation equipment identifier, the sharing object identifier and the authority sharing information, thereby realizing the configuration of the equipment permission, and improving the permission management efficiency of the equipment.

The invention discloses a menu authorization method based on roles. The menu authorization method comprises steps that one role or a plurality of roles are selected as authorized objects, and each role is an independent individual, and is not a group / category, and one role is only associated with a unique user in the same period, and one user is associated with one role or a plurality of roles; when the number of the authorized objects is one, authority candidate menus are displayed, and the authorized object in the authority candidate menus is selected, and the stored menu is automatically selected, and then the corresponding menu is selected from the authority candidate menus; when the number of the authorized objects is two or more than two, blank authority candidate menus are displayed, and the corresponding menu is selected from the authority candidate menus; the authorities of the authorized objects are stored. One role is only associated with the unique user in the same period, and one user is associated with one role or a plurality of roles, and the users can acquire the menu authorities by the associated roles, and therefore menu authorization of new employees or transferred employees is simple and convenient, and form authorization efficiency is improved.

The embodiment of the invention relates to a method for generating user right information. The method comprises the following steps: generating a user right mark rule list by a server; according to received inquiry commands of a mechanism information management list, acquiring mechanism information; receiving a mechanism information selecting command, and determining the mechanism name of a selected first mechanism; receiving user information of a first administrator user of the first mechanism; analyzing the mechanism name of the first mechanism to generate the right mark content of the first administrator user of the first mechanism; through matching with the mechanism information management list, obtaining the mechanism level and the first incidence relation of the first mechanism; according to the first incidence relation, determining a mechanism information of a second mechanism incident with the first mechanism; according to right attribute rule information, configuring the right attribute of the first administrator user to generate a secondary management right corresponding to the first mechanism and a primary management right corresponding to the second mechanism; and according to the user information, the right mark content and the right attribute of the first administrator user, generating right information.

The invention discloses a system attendance-checking setting method. The method includes: setting attendance-checking rules for roles in a system according to job natures and job contents, wherein theroles are independent individuals instead of groups / categories, each role in a same time period only associates with a unique user, and each user associates one or more roles; associating each user with one or more roles, and selecting one of the roles associated with each user as a main role of the corresponding user; checking attendance of staffs according to the attendance-checking rules corresponding to the main roles associated with the corresponding users. By adoption of the system attendance-checking setting method, independently setting the attendance-checking rules for new recruits is avoided, and independently changing the attendance-checking rules for staffs in position transferring is avoided as well.

The embodiment of the invention relates to the technical field of Internet, and discloses a user authorization system, method and device and electronic equipment. The system comprises a subject object management module, a mediator management module, an object object management module, a user management module and an authority management module. The subject object management module is used for managing a subject object, and the subject object comprises a plurality of first user attributes; the mediator management module is used for managing a mediator, and the mediator comprises a plurality of second user attributes; the object management module is used for managing an object, and the object comprises a plurality of user permission types; the user management module is used for managing users; and the authority management module is used for establishing a mapping relationship between the user and the user authority type through the first user attribute and / or the second user attribute. By means of the mode, the user authority management efficiency is improved.