Design And Implement Of Authority Management Component Based On Spring Framework

The access controls is the key content of the security mechanism of the information safety, it is main means that realizes the mechanism of the privacy and the integrality of the data.This thesis introduces the current situation of access control, then analyzes the disadvantages of DAC(discretionary access control) and MAC(mandatory access control). RBAC(Role-based access control) finishes granting and cancellation of user's authority through assigning and cancelling the role, so users and permissions are separated logically.This thesis's key point is the design and implement of the authority management component. Firstly, analyze the demand of the authority management, then design an authority management component, which can support many platform, reuse highly, have effective maintenance, have flexible authority, and realize it based on Spring framework. The persistence layer uses Hibernate, DAO abstract and encapsulate the operation of data source, the detail of data source and business logic layer are totally separated, The business layer uses declaring transaction management to optimize the operation of data , improve the efficiency of the component, And offer service locator for the outside application program to use. Verify the validity and the reusability of this component with an application project finally.