针对传统RBAC模型无法满足业务审批系统要求的权限可分级、能动态管理的新需求,提出一种改进后的基于角色的控制访问模型。该模型能够动态地创造权限、分配权限、撤销权限,达到资源分离、多级权限管理的目的。结合一个实际项目,采用脚本语言JS (JavaScript)和主流的SSH框架,给出该模型的实现过程,增强各类角色对权限的分级、动态管理,该模型的可行性由此得到验证。%With regard to the new requirements of business approval system on hierarchical permissions and dynamic management that the traditional RBAC model fails to meet,a new role-based access control was proposed.The model can dynamically create,assign or re-voke permissions,achieving the purpose of resources separation,multi-level privilege management.And combining with a practical pro-ject using JS scripting language (JavaScript)and the mainstream framework of SSH,the new model was implemented,various role’ management of multilevel and dynamic permissions were enhanced,the feasibility of the new model was then verified.
展开▼
