Delphine said: The first thing to say is that the entire OA system control can only go to the page, and buttons (that is, I can only go to the page level, I also want to control the business level and the data level) OA system has some columns. Divided into a primary column, a secondary column, a three-level column. For example, e-brief is the first level, and the text management is the third level of my issued article, and the actual operation interface is associated with the three-level column. Now start to say permissions, the permission division is first in accordance with the department, the department, and the division of permissions after adding personnel, and the division operation is actually giving him the page corresponding to the three-level column. Division rights must first add a role to the department, called position in the OA system, such as Director, Capital, etc. The role is going. For example, Zhang San is the office typist, then we will join the office when we operate, and then join the role typist in the office, and then assign the word of the three-level column to the typist, and finally put Zhang San. Typist in this role
Ice cloud @ 不 在 状态: I am afraid that I am afraid that you have turned off MSN ice cloud @ 不 在 状态: This is a similar ice cloud @ 不 在 状态: Delphine said: See the front? Hehe delphine said: But there is a question. If I have to add a feature at this time, if this feature is the basic function, it is not necessary to pay more attention to all the character rights, this is too tired! ! Delphine said: Delphine said: I want to achieve a person may have multiple characters how to do Delphine saying: For example, Zhang San is a word of characters, and he is also a press release. Ice cloud @ 不 在 状态: That is the relationship of ManyTomany. Ice cloud @ 不 在: This is a difficult ice cloud @ 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 状态It is necessary to connect other systems to OA, and how to provide interfaces, how to test the filter ice cloud in the current permission system @ 不 在 状态: This is, see your connection method, Ice cloud @ 不 在 状态: If it is small If you are granular, you will be a facade, such as my validate (user, resource, operation) ice cloud @ 不 在: If it is a large grain size, then give a WebService, the ice cloud @ 不 在: Prerequisite is , Ice Cloud @ 不 在 状态: Role, Resource, Operation can uniquely determine Delphine saying: Because the model doesn't see, can you join me to give you an example, put it into your model, I am looking at you now. model! ! Ice cloud @ 不 在: Oh Ice cloud @ 不 在 状态: You role here is Role ice cloud @ 不 在 状态: You have User is User ice cloud @ 不 在 状态: 不 不同: u u Roledelphine said: The actor ice cloud @ is not in the status: Each Role can also correspond to the user ice cloud @ 不 在: actor is User and Group's collective Delphine said: Many To Manydelphine said: That is, their base class? ? Delphine said: What can group? Can you give an example? Ice Cloud @ 不 不: group, that is, your department Delphine said: Oh Ice cloud @ 不 在: This group You can consider modifying, not fully follow my ice cloud @ 不 在: My group role Is delphine said: Managing User Ice Cloud @ 不 不有 不: A group of people have the same permissions, then give this group a role ice cloud @ 不 在: Let User belong to groupDelphine: Well, this solves my first A problem ice cloud @ 不 在 状态:,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,,, :
Put some basic permissions in a basic group. Ice cloud @ 不 不 在: Since User and Group are Delphine with Role is Many-to-Many said: Can a user not can be in multiple groups? ? Ice cloud @ 不 在 状态: And the operation is basically consistent, so I did actOrDelphine said: It is obviously possible! Ice Cloud @ 不 在: Yes, User, Role, Group is MtomDelphine said: Well Delphine said: actor is mainly responsible for handling permission ice cloud @ 不 在 状态: Your various columns, etc. Ice cloud @ 不 在: No, actor is User and Group's collective Ice cloud @ 不 不 状态: Your various columns, etc., what I said, the resource Delphine said: I understand the ice cloud @ 不 在 状态: Resources can be subdivided to different granular ice clouds @ 不 在 状态 说: For example, electronic briefs ID is 5delphine said: I want to do only great Delphine said: Um Ice @ 不 在 的 状态: then look at your settings Ice cloud @ 不 在 状态: In addition, The concept of an operation Delphine said: You continue to say that the ice cloud @ is not in the state: the operation of different resources is ice cloud @ 不 在 状态: For example, what is the easiest crudDelphine says: CRUD What does it mean? Ice Cloud @ 不 在: One resource one action, is a permission ice cloud @ 不 在 状态: The database's crud !! Increase and change the ice cloud @ 不 在 状态: One resource one action is a permission ice cloud @ Not in the state:, for example, the reading of the electronic manager says: It is IsRight (user, resource, operation) ice cloud @ 不 在 状态: PRIVILEGE, give a role ice cloud @ 不 在: then this role can Have this permission ice cloud @ 不 在 状态 说 说: 给 给 给 给 给, 读 电子 电子 读 读 读 读 读 读?? 说? 说 说 在 说 说 说 读 在 文 冰 在 不? 不???? 说?????? 说 说 说 说? 说?? 说 说 说 说Ice cloud @ 不 在: 不 冰云 @ 不 在: All columns are resourceDelphine said: Operaton is equivalent to the RCUD ice cloud @ 不 不 的 的 的 的 的 的 的 的 的 的 的 的 的 的 的 的 的 的@ 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不 不Delphine said: How to subdivide? Ice Cloud @ 不 在 状态: For example, List, Read, Create, Delete, Modify, Manage, Admin, etc. said: That does this do this to write difficult ice cloud @ 不 在 状态 状态 状态 状态: Shouldn't say Delphine says: For example, I must first define the power of Manage and Admin and other power ice cloud @ 不 在 状态:? Don't say A Delphine say: Do not have a logic how to know what manage is doing, what is the operation of admin? Ice Cloud @ 不 在: Any resource has these operations ice cloud @
Not in the state: You can consider a hierarchy Operation model ice cloud @ 不 不 的 状态:: For example, new one official ice cloud @ 不 在 状态 说: Of course, CREATE Operation Delphine said: For example, Manage (Create, List) admin , List, how do business logic know my definition? Ice Cloud @ 不 在: So, all Operation contains CREATE, can perform ice cloud @ 不 在 不 在: Or this, such as establishing a document, you ask if the permissions of Create operations Ice cloud @ 不 在 状态: So there is manage privilege You can do it, and admin can say: then I have to define the Operation Ice Cloud @ ignlined in advance, say: No Delphine said: Why? Ice cloud @ 不 在: My method is to define Delphine again when you use it: How to do it? Ice Cloud @ 不 在 状态: Just judgment, for example, if it is determined whether the user can have B operation ice cloud @ 不 不 状态: This time I have to read the operation and resource form, I found that these two have not been associated Then create a permission (A, b) ice cloud @ 不 在 状态: The newly created permissions, of course, there is no one, so return falsedelphine said: Where is the operation of the B? How do I know that the manage contains (Create, List) ice cloud @ is not in the status: Operation is generally fixed, this is to define the ice cloud @ 不 在 状态 状态 状态 说 不 状态 说 说 状态 状态 不 说 说:: 说:: 说::::: Yehere, how do I feel that only list, update, delete, ice cloud @ 不 在: Hey, this is your way of operation of the database @ 不 在 状态: Don't forget that there is also a file system ice cloud @ 不 在 状态: For example, MoveDelphine said: Can you take your definition! ! Delphine said: Oh! ! Ice cloud @ 不 在 状态: I define some of the database, and you are almost like you, haha delphine said: It seems that my horizons are still relatively small! !嘿嘿 Delphine said: This definition method I think you can use 00000000000000 to define Delphine saying: Do you look good? Ice cloud @ 不 在 状态: Yes, the implementation of the internal implementation is just the ice cloud @ 不 在 状态: But this is the limitations huh delphine said: Ok, then combine Operation is the basic Operation or Operation Delphine said: For example, Delphine said : 0001 is reading Delphine and said: 0010 is written Delphine to say: That 0011 is reading and writing ice cloud @ 不 在 状态: You can only define a chain hierarchy Delphine saying: Do you think? Ice cloud @ 不 在: How to do Delphine in the tree say: What does the tree mean? Ice cloud @ 不 在 状态: Well, actually I am also a defined ice cloud @ 不 不 状态: I don't think it's not good ice cloud @ 不 在 状态:
