The Authorization Management System Of The River Dike's Management Information System Based On RBAC

In the contemporary era, with the rapid development of computer technology, the network security problem becomes increasingly more prominent, to solve this issue, using the method of rights management to restrict users accessing to one system is an effective way. The authorization management is an important component of a large scale application system. This pager is indeed discussing the rights management and control related questions, relying on the authorization management subsystem of Hubei Province River Levee Management Information System project.Hubei Province River Levee Management Information System mainly provides the querying, browsing and real-time data transmission information supports for the embankment management. Centered on analysis for the whole system rights requirements, this thesis does the following works for constructing the authorization management subsystem.Firstly, according to the system's specific requirements of user accessing control, using the RBAC model to define and analyze the system's user, accessing role and rights, designed and implemented the functions for authorization management. The user and access rights got separated by applying the RBAC model, therefore reduced the complication of repetition for user accessing rights, and meanwhile enhanced the system authorization operations'logicality. Secondly, aiming at the demands of authorized environment, improved the RBAC model, to make it realize the direct empowerment for users in constraint, so increased the flexibility of authorization and reduced the redundancy for roles. Thirdly, based on RBAC model and J2EE MVC pattern, designed a three-story frame structure, divided the system into presentation layer, business objects layer and persistence layer, increased the system's expansibility. In addition, database was designed to implement each layer modules and functions. Finally, the running instances of the authorization management system application were presented and the running results analysis was also made.