System permission design (1)
Regarding the permissions control of the entire system, it can be divided into two components: roles and permissions. The role is assigned to the user, and the permissions are paid to the role, and the privilege is controlled in the program, which is more practical in some small and medium systems.
The advantage of this implementation is that the role can have the user itself, especially the user changes during the management process. At this time, only the role's permissions will be changed or added to the role, and then assign authority for this role. It will generate a new control.
The system analyst needs to do is to decompose the permissions in the system to be as appropriate.
