华东师范大学学报(自然科学版)Issue(3):109-120,12.DOI:10.3969/j.issn.1000-5641.2018.03.012
研究生信息平台中权限管理的设计与实现
Design and implementation of an authorization system for a graduate school information
摘要
Abstract
Authentication and authorization are critical to ensuring the security of data and services in software systems.To satisfy the need for authorization management during the development of the next generation information platform for East China Normal University's Graduate School,this paper proposes an access domain-based authorization module and uses Spring Security components to implement a hierarchical,configurable,high-performance privilege interceptor.The approach can effectively defend against popular network attacks,such as session attacks and CSRF,guarantee low latency for web service access,and provide a flexible way to meet the frequently changing authorization requirements of faculty from different schools and departments.关键词
授权/权限管理/访问域模型Key words
authorization/authority management/access domain model分类
信息技术与安全科学引用本文复制引用
顾航,夏帆,宋树彬,肖李敏,董启文,徐林昊,周傲英..研究生信息平台中权限管理的设计与实现[J].华东师范大学学报(自然科学版),2018,(3):109-120,12.基金项目
国家重点研发计划(2016YFB1000905) (2016YFB1000905)
国家自然科学基金广东省联合重点项目(U1401256) (U1401256)
国家自然科学基金(61672234,61402177) (61672234,61402177)
华东师范大学信息化软科学研究课题(41600-10201-562940/008) (41600-10201-562940/008)