Summary of the invention
For overcoming Problems existing in correlation technique, the disclosure provides a kind of authority giving method and device.
According to the first aspect of disclosure embodiment, a kind of authority giving method is provided, comprises:
In the installation process of arbitrary application A PP, authorize the first system authority to this APP, this first system authority refers to that security meets the System Privileges of preset security standard;
In this APP use procedure, when receive this APP to second system authority in the application of arbitrary System Privileges time, display is applied System Privileges and this is applied the permission authorization options of System Privileges and forbids authorization options, this second system authority refers in the System Privileges that this APP needs, except the System Privileges except this first system authority;
When the trigger action to this permission authorization options being detected, authorizing this to this APP and being applied System Privileges.
In the first possibility implementation of first aspect of the present disclosure, in the installation process of arbitrary application A PP, before authorizing the first system authority to this APP, the method also comprises:
Obtain the installation kit of this APP;
From the installation kit of this APP, obtain the System Privileges that this APP needs;
In the System Privileges that this APP needs, determine this first system authority, this first system authority is determined according to the security of each System Privileges.
In the second possibility implementation of first aspect of the present disclosure, in the System Privileges that this APP needs, determine that this first system authority comprises:
To server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, and determines this first system authority, receive this first system authority that this server sends in the System Privileges that this server is needed at this APP; Or,
To server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, this server is made to return the data of safety of each System Privileges in the System Privileges of this APP needs, receive the data of safety of this each System Privileges, and according to the data of safety of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
In the third possibility implementation of first aspect of the present disclosure, according to the data of safety of this each System Privileges, authority security being met preset security standard is defined as this first system authority and comprises:
According to the amount of authorized user of this each System Privileges, determine the security of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
In the 4th kind of possibility implementation of first aspect of the present disclosure, in the installation process of arbitrary application A PP, after authorizing the first system authority to this APP, the method also comprises:
The first system authority of having been authorized by local terminal and the end message of this local terminal are sent to server, make this server by this first kind System Privileges and this end message corresponding stored.
In the 5th kind of possibility implementation of first aspect of the present disclosure, the method also comprises:
Show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and this is applied the permission authorization options of each System Privileges beyond System Privileges and forbids authorization options;
According to being applied the permission authorization options of each System Privileges beyond System Privileges to this or forbidding the trigger action of authorization options, determine the 3rd System Privileges;
The 3rd System Privileges is authorized to this APP.
In the 6th kind of possibility implementation of first aspect of the present disclosure, the method also comprises:
Show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and all allow authorization options and all forbid authorization options;
When the trigger action to this whole permission authorization options being detected, authorize this second system authority to this APP.
According to the second aspect of disclosure embodiment, provide a kind of authority to authorize device, comprising:
Authorization module, in the installation process of arbitrary application A PP, authorizes the first system authority to described APP, and described the first system authority refers to that security meets the System Privileges of preset security standard;
Display module, for in described APP use procedure, when receive described APP to second system authority in the application of arbitrary System Privileges time, display be applied System Privileges and described in be applied the permission authorization options of System Privileges and forbid authorization options, described second system authority refers in the System Privileges that described APP needs, except the System Privileges except described the first system authority;
Described authorization module, also for when the trigger action to described permission authorization options being detected, is applied System Privileges described in authorizing to described APP.
In the first possibility implementation of second aspect of the present disclosure, described device also comprises:
Installation kit acquisition module, for obtaining the installation kit of this APP;
System Privileges acquisition module, for from the installation kit of this APP, obtains the System Privileges that this APP needs;
The first system authority determination module, in the System Privileges that needs at this APP, determine this first system authority, this first system authority is determined according to the security of each System Privileges.
In the second possibility implementation of second aspect of the present disclosure, this first system authority determination module is used for:
To server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, and determines this first system authority, receive this first system authority that this server sends in the System Privileges that this server is needed at this APP; Or,
To server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, this server is made to return the data of safety of each System Privileges in the System Privileges of this APP needs, receive the data of safety of this each System Privileges, and according to the data of safety of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
In the third possibility implementation of second aspect of the present disclosure, this first system authority determination module is used for:
According to the amount of authorized user of this each System Privileges, determine the security of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
In the 4th kind of possibility implementation of second aspect of the present disclosure, this device also comprises:
Sending module, the end message for the first system authority of having been authorized by local terminal and this local terminal is sent to server, makes this server by this first kind System Privileges and this end message corresponding stored.
In the 5th kind of possibility implementation of second aspect of the present disclosure, this device also comprises:
This display module also for show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and this is applied the permission authorization options of each System Privileges beyond System Privileges and forbids authorization options;
3rd System Privileges determination module, for according to being applied the permission authorization options of each System Privileges beyond System Privileges to this or forbidding the trigger action of authorization options, determines the 3rd System Privileges;
This authorization module is also for authorizing the 3rd System Privileges to this APP.
In the 6th kind of possibility implementation of second aspect of the present disclosure, this device also comprises:
This display module also for show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and all allow authorization options and all forbid authorization options;
This authorization module also for when the trigger action to this whole permission authorization options being detected, authorizes this second system authority to this APP.
The third aspect, additionally provides a kind of authority and authorizes device, comprising:
Processor;
For the storer of the executable instruction of storage of processor;
Wherein, this processor is configured to:
In the installation process of arbitrary application A PP, authorize the first system authority to this APP, this first system authority refers to that security meets the System Privileges of preset security standard;
In this APP use procedure, when receive this APP to second system authority in the application of arbitrary System Privileges time, display is applied System Privileges and this is applied the permission authorization options of System Privileges and forbids authorization options, this second system authority refers in the System Privileges that this APP needs, except the System Privileges except this first system authority;
When the trigger action to this permission authorization options being detected, authorizing this to this APP and being applied System Privileges.
The beneficial effect that the technical scheme that disclosure embodiment provides is brought is:
The disclosure by the authorized user amount determination the first system authority of each System Privileges, and in APP installation process, authorizes the first system authority to this APP, under the prerequisite not reducing security of system, can improve the continuity of operation.
Should be understood that, it is only exemplary and explanatory that above general description and details hereinafter describe, and can not limit the disclosure.
Embodiment
For making object of the present disclosure, technical scheme and advantage clearly, below in conjunction with accompanying drawing, disclosure embodiment is described in further detail.
Here will be described exemplary embodiment in detail, its sample table shows in the accompanying drawings.When description below relates to accompanying drawing, unless otherwise indicated, the same numbers in different accompanying drawing represents same or analogous key element.Embodiment described in following exemplary embodiment does not represent all embodiments consistent with the disclosure.On the contrary, they only with as in appended claims describe in detail, the example of apparatus and method that aspects more of the present disclosure are consistent.
Fig. 1 is the process flow diagram of a kind of authority giving method according to an exemplary embodiment, and as shown in Figure 1, authority giving method is used for, in terminal, comprising the following steps.
In a step 101, in the installation process of arbitrary application A PP, authorize the first system authority to this APP, this first system authority refers to that security meets the System Privileges of preset security standard.
In a step 102, in this APP use procedure, when receive this APP to second system authority in the application of arbitrary System Privileges time, display is applied System Privileges and this is applied the permission authorization options of System Privileges and forbids authorization options, this second system authority refers in the System Privileges that this APP needs, except the System Privileges except this first system authority.
In step 103, when the trigger action to this permission authorization options being detected, authorizing this to this APP and being applied System Privileges.
The method that disclosure embodiment provides, by the authorized user amount determination the first system authority of each System Privileges, and in APP installation process, authorizes the first system authority to this APP, under the prerequisite not reducing security of system, can improve the continuity of operation.
In the first possibility implementation of the present disclosure, in the installation process of arbitrary application A PP, before authorizing the first system authority to this APP, the method also comprises:
Obtain the installation kit of this APP;
From the installation kit of this APP, obtain the System Privileges that this APP needs;
In the System Privileges that this APP needs, determine this first system authority, this first system authority is determined according to the security of each System Privileges.
In the second possibility implementation of the present disclosure, in the System Privileges that this APP needs, determine that this first system authority comprises:
To server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, and determines this first system authority, receive this first system authority that this server sends in the System Privileges that this server is needed at this APP; Or,
To server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, this server is made to return the data of safety of each System Privileges in the System Privileges of this APP needs, receive the data of safety of this each System Privileges, and according to the data of safety of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
In the third possibility implementation of the present disclosure, according to the data of safety of this each System Privileges, authority security being met preset security standard is defined as this first system authority and comprises:
According to the amount of authorized user of this each System Privileges, determine the security of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
In the 4th kind of possibility implementation of the present disclosure, in the installation process of arbitrary application A PP, after authorizing the first system authority to this APP, the method also comprises:
The first system authority of having been authorized by local terminal and the end message of this local terminal are sent to server, make this server by this first kind System Privileges and this end message corresponding stored.
In the 5th kind of possibility implementation of the present disclosure, the method also comprises:
Show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and this is applied the permission authorization options of each System Privileges beyond System Privileges and forbids authorization options;
According to being applied the permission authorization options of each System Privileges beyond System Privileges to this or forbidding the trigger action of authorization options, determine the 3rd System Privileges;
The 3rd System Privileges is authorized to this APP.
In the 6th kind of possibility implementation of the present disclosure, the method also comprises:
Show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and all allow authorization options and all forbid authorization options;
When the trigger action to this whole permission authorization options being detected, authorize this second system authority to this APP.
Above-mentioned all alternatives, can adopt and combine arbitrarily formation embodiment of the present disclosure, this is no longer going to repeat them.
Fig. 2 A is the process flow diagram of a kind of authority giving method according to an exemplary embodiment.The executive agent of this embodiment can be terminal, and with reference to Fig. 2 A, this embodiment specifically comprises:
In step 201, obtain the installation kit of arbitrary APP, from the installation kit of this APP, obtain the System Privileges that this APP needs.
At present, mostly the installation of APP is to realize by obtaining APP installation kit, and this APP installation kit not only comprises the installation file of installing needed for APP, can also comprise the specified file of the System Privileges for stating this APP.
In the installation starting stage of this APP, terminal, from the installation kit of this APP, obtains and shows the System Privileges of these APP needs, the System Privileges can understood this APP to make user and need.Such as, when this APP is for shopping class APP, the System Privileges that this APP in use needs can comprise location, read address list etc.
In order to make display interface more neatly clear, classification display mode and Folding display mode can be adopted, on the confirmation installation interface of this APP, show the System Privileges of these APP needs, as shown in Figure 2 B.
Wherein, classification display refers to that the System Privileges by this APP obtained from APP installation kit needs is divided into safety-related systems authority, privacy related system authority and other system authority, and shows at correspondence position the System Privileges number that every type systematic authority comprises; Wherein, safe associated rights can comprise: the System Privileges such as internet access authority completely and permission changed network connection attribute; Privacy related system authority can comprise: system positioning function, System Privileges such as reading associated person information, short message reading content etc.
Folding display refers to the correspondence position display folded/expanded option in every type systematic authority, makes user by performing trigger action to folded/expanded option, can check the particular content that corresponding category system authority comprises.
Certainly, for the System Privileges that APP in use needs, can be shown by above-mentioned display mode, other display modes also can be adopted to show, and disclosure embodiment is not construed as limiting this.
In order to simplify the step that frequent application is authorized, the System Privileges that can need from APP, the authority selecting security higher is as the first system authority, make directly to authorize this first system authority at initial installation stage, correspondingly, in the System Privileges that this APP needs, determine this first system authority, this first system authority is determined according to the security of each System Privileges.The acquisition methods of this first system authority can have following two kinds:
The first, to server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, determine this first system authority in the System Privileges that this server is needed at this APP, receive this first system authority that this server sends.That is to say, by server from the System Privileges that this APP needs, determine the first system authority.
The second, to server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, this server is made to return the data of safety of each System Privileges in the System Privileges of this APP needs, receive the data of safety of this each System Privileges, and according to the data of safety of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
Wherein, in the System Privileges that this APP needs, the data of safety of each System Privileges can be: the authorized user amount of each System Privileges accounts for the ratio of the installation customer volume of this APP, also can be the authorized user amount of each System Privileges and the installation customer volume of this APP, certainly, the data of safety of this each System Privileges can also be that other can represent the data of System Privileges security, and disclosure embodiment is not construed as limiting this.
In addition, according to the Query Result obtained by authority query statement, terminal is when showing the System Privileges that this APP needs, correspondence can also show the authorized user amount of each System Privileges in the System Privileges of this APP needs and the customer volume of this APP be installed, with the security making user can understand each System Privileges in the System Privileges of this APP needs.
The security of each System Privileges required for this APP is different, therefore, the higher System Privileges of security is understood in order to make user, on the confirmation installation interface of this APP, except showing the System Privileges of these APP needs, can also show the first system authority, this first system authority is the System Privileges that in the System Privileges of this APP needs, security is higher, and concrete display interface as shown in Figure 2 C.
It should be noted that, the defining method of this first system authority can be: according to the data of safety of this each System Privileges, and authority security being met preset security standard is defined as this first system authority; Particularly, according to the amount of authorized user of this each System Privileges, determine the security of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
Wherein, the method to set up of this preset security standard can be following two kinds:
The first, the System Privileges needed by this APP sorts from high to low according to authorized user amount, be arbitrary appointment numerical value by this preset security standard configuration, this appointment numerical value is greater than 1, and is less than the number of the System Privileges of these APP needs.
Correspondingly, according to the method for this preset security standard determination the first system authority can be:
By specifying the System Privileges of numerical value before after sorting from high to low according to authorized user amount, be defined as the System Privileges meeting preset security standard.
The second, by this preset security standard configuration for specifying threshold value, this appointment threshold value can for arbitrary 0 percentages being less than 1 that is greater than, and can be also arbitrary appointment numerical value by this preset security standard, this appointment numerical value be greater than 0, and is less than this APP and installs customer volume.
Correspondingly, according to the method for this preset security standard determination the first system authority can be:
If the authorized user amount that the data of safety of each system is each System Privileges accounts for the ratio of the installation customer volume of this APP, when the authorized user amount of the arbitrary System Privileges in the System Privileges that this APP needs account for ratio that this APP installs customer volume be greater than specify threshold value time, this System Privileges is defined as the first system authority; If the data of safety of each system is the authorized user amount of each System Privileges and the installation customer volume of this APP, when the authorized user amount of System Privileges arbitrary in the System Privileges that this APP needs is greater than appointment numerical value, this System Privileges is defined as the first system authority.
The defining method of preset security standard can be any one in above two kinds, and additive method also can be adopted to determine, disclosure embodiment is not construed as limiting this; Similarly, the defining method of the first system authority can be any one in said method, and also can determine this first system authority by additive method, disclosure embodiment is not construed as limiting this.
In another embodiment of the present disclosure, in order to avoid in APP use procedure, remind due to frequent trigger authorization and user is impacted, improve security of system further simultaneously, terminal can also arrange security system permissions list in advance, this security system permissions list for storing the System Privileges not affecting present terminal security of system, thus makes, in the installation process of arbitrary APP to be installed, to authorize System Privileges in batches.That is to say, even if do not obtain the data being used for certainty annuity legal power safety from server, also can authorize APP to be installed in installation process.
According to this security system permissions list, determine that the method for the System Privileges of authorizing in installation process can be: the System Privileges needed based on this APP and this security system permissions list, is belonged to the System Privileges of this security system permissions list in the System Privileges that this APP is needed, be defined as the first system authority; The System Privileges that also can return based on server and this security system permissions list contrast, and is belonged to the System Privileges of this security system permissions list, be defined as the first system authority in the System Privileges that this server is returned; Certainly, can also according to this security system permissions list, determined the System Privileges can authorized in APP installation process by additive method, disclosure embodiment is not construed as limiting this.
In step 202., in the installation process of this APP, authorize the first system authority to this APP, this first system authority refers to that security meets the System Privileges of preset security standard.
In order to avoid this APP that triggers frequent in the use procedure of APP is to the application of different system authority, at this APP, be installed the starting stage, confirming that installation interface can also show the first system authority at this APP, to make user when installing APP, directly authorizing this first system authority to this APP.
When detect user to install and the trigger action of authorization options time, this APP is installed, and authorizes the first system authority to this APP in the installation process of this APP; Wherein, also authorization options is installed be used for further this APP being installed.Further, when after this APP successful installation, the first system authority of having been authorized by local terminal and the end message of this local terminal are sent to server, make this server by this first kind System Privileges and this end message corresponding stored, to make server can provide System Privileges safety information for the installation user that this APP is later, or be provided for the related data of certainty annuity legal power safety.
In step 203, in this APP use procedure, when receive this APP to second system authority in the application of arbitrary System Privileges time, display is applied System Privileges and this is applied the permission authorization options of System Privileges and forbids authorization options, this second system authority refers in the System Privileges that this APP needs, except the System Privileges except this first system authority.
In the use procedure of this APP, when needs use arbitrary systemic-function, the application to corresponding system authority can be triggered, such as, if this APP is shopping class APP, after this APP of startup, this APP needs the geographical location information current according to user to provide corresponding merchant information, therefore the application to system positioning function authority can be triggered, when receiving this application, the permission authorization options of this system positioning function authority of terminal demonstration and this authority and forbid authorization options.
In another embodiment of the present disclosure, show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and all allow authorization options and all forbid authorization options; When the trigger action to this whole permission authorization options being detected, authorize this second system authority to this APP.
Such as, if this APP is shopping class APP, after this APP of startup, this APP needs the geographical location information current according to user to provide corresponding merchant information, therefore the application to system positioning function authority can be triggered, when receiving this application, show all System Privileges comprised in the second system authority of this system positioning function authority, display simultaneously all allows authorization options and all forbids authorization options; Display interface as shown in Figure 2 D.
The above-mentioned display packing to second system authority can avoid the application repeatedly triggered in APP use procedure System Privileges, and then can improve the continuity of operation.
In another embodiment of the present disclosure, show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and this is applied the permission authorization options of each System Privileges beyond System Privileges and forbids authorization options; According to being applied the permission authorization options of each System Privileges beyond System Privileges to this or forbidding the trigger action of authorization options, determine the 3rd System Privileges; The 3rd System Privileges is authorized to this APP.
The above-mentioned display packing to second system authority can be described further with Fig. 2 E, wherein, different according to second system authority display packing, correspondingly, determines that the method for the 3rd System Privileges can be following two kinds:
The first, in second system authority the correspondence position Show Options frame of each System Privileges, when the trigger action of user to arbitrary Option Box being detected, correspondence system authority is defined as the 3rd System Privileges.
The second, in second system authority the correspondence position display of each System Privileges allow authorization options and forbid authorization options, be defined as the 3rd System Privileges by the System Privileges allowing authorization options to perform trigger action corresponding.
Certainly, for the determination of the 3rd System Privileges, can also adopt additive method, disclosure embodiment is not construed as limiting this.
By the above-mentioned display packing to second system authority, make terminal while guarantee continuity of operation, according to the selection of different user, part second system authority can also be authorized to this APP, thus the security that authority authorizes can be improved targetedly.
For the display of second system authority, except adopting above-mentioned display method, can also adopt other display packings, disclosure embodiment is not construed as limiting this.
In step 204, when the trigger action to this permission authorization options being detected, authorizing this to this APP and being applied System Privileges.
According in step 203 to the different display packings of second system authority, authorizing to this APP the method being applied System Privileges can have following three kinds:
If the first only shows and is applied System Privileges and this is applied the permission authorization options of System Privileges and forbids authorization options, when detecting when being applied the trigger action of operation authorization options of System Privileges, authorizing this to this APP and being applied System Privileges.
If the second shows all System Privileges in second system authority and all allows authorization options and all forbid authorization options, when the trigger action to whole permission authorization options being detected, authorize second system authority to this APP.
If all System Privileges in the third display second system authority and the permission authorization options of each System Privileges and forbid authorization options, according to the determination result of the 3rd System Privileges, authorize the 3rd System Privileges to this APP.
In the use procedure of this APP, except employing said method is authorized except second system authority to this APP, additive method can also be adopted to authorize Xi Er System Privileges to this APP, and disclosure embodiment is not construed as limiting this.
The method that disclosure embodiment provides, by the authorized user amount determination the first system authority of each System Privileges, and in APP installation process, authorizes the first system authority to this APP, under the prerequisite not reducing security of system, can improve the continuity of operation; Further, by the use procedure of APP, batch authorization is selectively carried out to second system authority, the security of the authority giving method that the disclosure provides can be improved targetedly.
Fig. 3 is that a kind of authority according to an exemplary embodiment authorizes device block diagram.With reference to Fig. 3, this device comprises authorization module 301, display module 302.
Authorization module 301, in the installation process of arbitrary application A PP, authorizes the first system authority to this APP, and this first system authority refers to that security meets the System Privileges of preset security standard;
Display module 302, for in this APP use procedure, when receive this APP to second system authority in the application of arbitrary System Privileges time, display is applied System Privileges and this is applied the permission authorization options of System Privileges and forbids authorization options, this second system authority refers in the System Privileges that this APP needs, except the System Privileges except this first system authority;
This authorization module 301 also for when the trigger action to this permission authorization options being detected, being authorized this to this APP and being applied System Privileges.
In the first possibility implementation that the disclosure provides, this device also comprises:
Installation kit acquisition module, for obtaining the installation kit of this APP;
System Privileges acquisition module, for from the installation kit of this APP, obtains the System Privileges that this APP needs;
The first system authority determination module, in the System Privileges that needs at this APP, determine this first system authority, this first system authority is determined according to the security of each System Privileges.
In the second possibility implementation that the disclosure provides, this first system authority determination module is used for:
To server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, and determines this first system authority, receive this first system authority that this server sends in the System Privileges that this server is needed at this APP; Or,
To server sending permission query statement, this authority query statement carries the System Privileges that this APP needs, this server is made to return the data of safety of each System Privileges in the System Privileges of this APP needs, receive the data of safety of this each System Privileges, and according to the data of safety of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
In the third possibility implementation that the disclosure provides, this first system authority determination module is used for:
According to the amount of authorized user of this each System Privileges, determine the security of this each System Privileges, authority security being met preset security standard is defined as this first system authority.
In the 4th kind of possibility implementation that the disclosure provides, this device also comprises:
Sending module, the end message for the first system authority of having been authorized by local terminal and this local terminal is sent to server, makes this server by this first kind System Privileges and this end message corresponding stored.
In the 5th kind of possibility implementation that the disclosure provides, this device also comprises:
This display module 302 also for show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and this is applied the permission authorization options of each System Privileges beyond System Privileges and forbids authorization options;
3rd System Privileges determination module, for according to being applied the permission authorization options of each System Privileges beyond System Privileges to this or forbidding the trigger action of authorization options, determines the 3rd System Privileges;
This authorization module 301 is also for authorizing the 3rd System Privileges to this APP.
In the 6th kind of possibility implementation that the disclosure provides, this device also comprises:
This display module 302 also for show be applied System Privileges and this be applied the permission authorization options of System Privileges and forbid authorization options time, to show in this second system authority this and be applied each System Privileges beyond System Privileges and all allow authorization options and all forbid authorization options;
This authorization module 301 also for when the trigger action to this whole permission authorization options being detected, authorizes this second system authority to this APP.
About the device in above-described embodiment, wherein the concrete mode of modules executable operations has been described in detail in about the embodiment of the method, will not elaborate explanation herein.
Fig. 4 is the block diagram that a kind of authority according to an exemplary embodiment authorizes device 400.Such as, device 400 can be mobile phone, computing machine, digital broadcast terminal, messaging devices, game console, tablet device, Medical Devices, body-building equipment, personal digital assistant etc.
With reference to Fig. 4, device 400 can comprise following one or more assembly: processing components 402, storer 404, power supply module 406, multimedia groupware 404, audio-frequency assembly 410, I/O (I/O) interface 412, sensor module 414, and communications component 416.
The integrated operation of the usual control device 400 of processing components 402, such as with display, call, data communication, camera operation and record operate the operation be associated.Processing components 402 can comprise one or more processor 420 to perform instruction, to complete all or part of step of above-mentioned method.In addition, processing components 402 can comprise one or more module, and what be convenient between processing components 402 and other assemblies is mutual.Such as, processing components 402 can comprise multi-media module, mutual with what facilitate between multimedia groupware 408 and processing components 402.
Storer 404 is configured to store various types of data to be supported in the operation of device 400.The example of these data comprises for any application program of operation on device 400 or the instruction of method, contact data, telephone book data, message, picture, video etc.Storer 404 can be realized by the volatibility of any type or non-volatile memory device or their combination, as static RAM (SRAM), Electrically Erasable Read Only Memory (EEPROM), Erasable Programmable Read Only Memory EPROM (EPROM), programmable read only memory (PROM), ROM (read-only memory) (ROM), magnetic store, flash memory, disk or CD.
The various assemblies that power supply module 406 is device 400 provide electric power.Power supply module 406 can comprise power-supply management system, one or more power supply, and other and the assembly generating, manage and distribute electric power for device 400 and be associated.
Multimedia groupware 408 is included in the screen providing an output interface between described device 400 and user.In certain embodiments, screen can comprise liquid crystal display (LCD) and touch panel (TP).If screen comprises touch panel, screen may be implemented as touch-screen, to receive the input signal from user.Touch panel comprises one or more touch sensor with the gesture on sensing touch, slip and touch panel.Described touch sensor can the border of not only sensing touch or sliding action, but also detects the duration relevant to described touch or slide and pressure.In certain embodiments, multimedia groupware 408 comprises a front-facing camera and/or post-positioned pick-up head.When device 400 is in operator scheme, during as screening-mode or video mode, front-facing camera and/or post-positioned pick-up head can receive outside multi-medium data.Each front-facing camera and post-positioned pick-up head can be fixing optical lens systems or have focal length and optical zoom ability.
Audio-frequency assembly 410 is configured to export and/or input audio signal.Such as, audio-frequency assembly 410 comprises a microphone (MIC), and when device 400 is in operator scheme, during as call model, logging mode and speech recognition mode, microphone is configured to receive external audio signal.The sound signal received can be stored in storer 404 further or be sent via communications component 416.In certain embodiments, audio-frequency assembly 410 also comprises a loudspeaker, for output audio signal.
I/O interface 412 is for providing interface between processing components 402 and peripheral interface module, and above-mentioned peripheral interface module can be keyboard, some striking wheel, button etc.These buttons can include but not limited to: home button, volume button, start button and locking press button.
Sensor module 414 comprises one or more sensor, for providing the state estimation of various aspects for device 400.Such as, sensor module 414 can detect the opening/closing state of device 400, the relative positioning of assembly, such as described assembly is display and the keypad of device 400, the position of all right pick-up unit 400 of sensor module 414 or device 400 1 assemblies changes, the presence or absence that user contacts with device 400, the temperature variation of device 400 orientation or acceleration/deceleration and device 400.Sensor module 414 can comprise proximity transducer, be configured to without any physical contact time detect near the existence of object.Sensor module 414 can also comprise optical sensor, as CMOS or ccd image sensor, for using in imaging applications.In certain embodiments, this sensor module 414 can also comprise acceleration transducer, gyro sensor, Magnetic Sensor, pressure transducer or temperature sensor.
Communications component 416 is configured to the communication being convenient to wired or wireless mode between device 400 and other equipment.Device 400 can access the wireless network based on communication standard, as WiFi, 2G or 3G, or their combination.In one exemplary embodiment, communications component 416 receives from the broadcast singal of external broadcasting management system or broadcast related information via broadcast channel.In one exemplary embodiment, described communications component 416 also comprises near-field communication (NFC) module, to promote junction service.Such as, can based on radio-frequency (RF) identification (RFID) technology in NFC module, Infrared Data Association (IrDA) technology, ultra broadband (UWB) technology, bluetooth (BT) technology and other technologies realize.
In the exemplary embodiment, device 400 can be realized, for performing above-mentioned authority giving method by one or more application specific integrated circuit (ASIC), digital signal processor (DSP), digital signal processing appts (DSPD), programmable logic device (PLD) (PLD), field programmable gate array (FPGA), controller, microcontroller, microprocessor or other electronic components.
In the exemplary embodiment, additionally provide a kind of non-transitory computer-readable recording medium comprising instruction, such as, comprise the storer 404 of instruction, above-mentioned instruction can perform said method by the processor 420 of device 400.Such as, described non-transitory computer-readable recording medium can be ROM, random access memory (RAM), CD-ROM, tape, floppy disk and optical data storage devices etc.
In the exemplary embodiment, additionally provide a kind of non-transitory computer-readable recording medium, when the instruction in described storage medium is performed by the processor of mobile terminal, make mobile terminal can perform above-mentioned authority giving method.
Those skilled in the art, at consideration instructions and after putting into practice invention disclosed herein, will easily expect other embodiment of the present disclosure.The application is intended to contain any modification of the present disclosure, purposes or adaptations, and these modification, purposes or adaptations are followed general principle of the present disclosure and comprised the undocumented common practise in the art of the disclosure or conventional techniques means.Instructions and embodiment are only regarded as exemplary, and true scope of the present disclosure and spirit are pointed out by claim below.
Should be understood that, the disclosure is not limited to precision architecture described above and illustrated in the accompanying drawings, and can carry out various amendment and change not departing from its scope.The scope of the present disclosure is only limited by appended claim.