摘要
在B/S模式中,角色的权限验证是保证系统信息安全的关键技术。对所有的系统访问人员分配一定的角色,即一定的访问权限将最大限度地保证系统信息的安全性。Struts是当前Web应用系统开发中最为流行的框架之一。文中讨论并设计了一个利用Struts框架实现对系统用户角色的验证,通过将JSP页面映射为一个特定的权限,一个系统访问人员映射为一个或多个角色,从而实现了角色权限的验证。利用Strurs框架实现角色权限验证的同时隐藏了系统的文件组织结构,更好地保证了系统信息的安全性。
The authorization validation is the key technique to protect the security of system's information in the B/S mode, To different accessed person assigned different role will protect the security of system' s information in maximum. Struts is the most popular frame in developing the Web application system. Introduces a way to build a Web system' s authorization validation which based on the Struts frame, The main idea is that: each "JSP" page is mapped to a right, each acce "ssed person is mapped to a role, and then different roles correspond to different rights. The Web system mode like this can hide the structure of the file, that means the system' s information is safer.
出处
《计算机技术与发展》
2006年第12期227-229,共3页
Computer Technology and Development
