RBAC和IOC技术在权限控制中的应用

Applying RBAC and IOC To Access Control

权限管理是所有软件系统,特别是MIS系统和信息管理系统的核心内容之一。学术界对于权限管理已经做了大量的研究工作并提出了许多模型,其中基于角色的访问控制(RBAC)模型是近来广泛流行的模型之一,现在已经比较成熟。基于IOC容器进行开发可以明显减少对象间和服务间的耦合度。本文结合车辆管理系统权限模块开发的实际应用,阐述了采用RBAC技术与IOC技术结合的方式实现角色和权限控制的设计思路。

Jurisdiction management is the kernel of all software system,especially MIS and information management system,plenty of researches have been carried on privilege management and various models have been proposed,among which the role-based access control is the most prevalent one and it has become mature.The use of IOC containers can clearly reduce the coupling between services for ease of components.This article relates to the practical application of vehicle management system jurisdiction module development,set forth the design mentality of jurisdiction and role control combined the RBAC technology with the IOC technology.