技术领域Technical Field
本发明涉及用户权限管理的技术领域,特别涉及一种批量授予用户权限的方法及终端。The present invention relates to the technical field of user authority management, and in particular to a method and a terminal for granting user authority in batches.
背景技术Background technique
用户权限授予是一个关键的功能,它确保了系统的安全性和数据的完整性。目前的用户权限授予过程为:首先定义不同的角色,每个角色拥有一组特定的权限,这些角色根据用户在系统中的职责和需要访问的资源来定义;其次为角色分配具体的权限,通过精细化的权限控制,可以确保用户只能访问他们需要的资源以及有限的操作;最后进行用户与角色关联,将用户分配给一个或多个角色,用户通过继承角色的权限来获得对系统资源的访问能力。User permission granting is a key function that ensures the security of the system and the integrity of the data. The current user permission granting process is: first, define different roles, each role has a set of specific permissions, these roles are defined according to the user's responsibilities in the system and the resources they need to access; second, assign specific permissions to the role, through refined permission control, it can be ensured that users can only access the resources they need and limited operations; finally, associate users with roles, assign users to one or more roles, and users gain access to system resources by inheriting the permissions of the role.
对于上述方案,管理员关联用户与角色在实际操作过程中,需要事先通知被授予的用户进行账号注册,搜索被授予的用户(比如通过手机号码,姓名等),再将其关联到要授予的角色下。这些操作在跨层级、大批量授权等场景中存在以下缺点:For the above solution, when the administrator associates users with roles, he needs to notify the granted users in advance to register their accounts, search for the granted users (for example, by mobile phone number, name, etc.), and then associate them with the roles to be granted. These operations have the following disadvantages in cross-level and large-scale authorization scenarios:
1)多层级用户权限管理中的跨层级授权效率低下1) Inefficient cross-level authorization in multi-level user rights management
管理员需要事先通知用户在平台上进行注册,收集用户的注册信息(在平台系统上通过该信息搜索到用户)。在跨层级,大批量用户情况下,管理员可能是不清楚跨层级的用户信息,如果收集用户信息有错或者未注册,往往需要多轮反复确认,整体的授权过程消息非常低下。Administrators need to notify users in advance to register on the platform and collect user registration information (using this information to search for users on the platform system). In the case of cross-level and large-volume users, administrators may not be clear about cross-level user information. If the collected user information is wrong or not registered, multiple rounds of repeated confirmation are often required, and the overall authorization process information is very low.
2)大批量用户权限授予操作繁琐,工作量大且易出错2) Granting permissions to large numbers of users is cumbersome, labor-intensive and error-prone
管理员将用户关联上某个角色,一般是在用户角色管理界面上,在某个角色下搜索并添加用户或者在用户下搜索角色关联上。在大批量用户授权的情况,工作量大且易出错。Administrators associate users with a role, usually on the user role management interface, by searching and adding users under a role or searching for roles under users. In the case of large-scale user authorization, the workload is large and error-prone.
发明内容Summary of the invention
本发明所要解决的技术问题是:提供一种批量授予用户权限的方法及终端,能够在大批量授予用户权限时,保证权限授予的效率和准确性。The technical problem to be solved by the present invention is to provide a method and a terminal for batch granting user permissions, which can ensure the efficiency and accuracy of permission granting when granting user permissions in batches.
为了解决上述技术问题,本发明采用的技术方案为:In order to solve the above technical problems, the technical solution adopted by the present invention is:
一种批量授予用户权限的方法,包括步骤:A method for granting user permissions in batches, comprising the steps of:
S1、根据接收到的待授权信息生成预设个数的用户权限激活码,得到用户权限激活码列表,并存储所述用户权限激活码与对应待授权信息的关联关系;S1. Generate a preset number of user authority activation codes according to the received information to be authorized, obtain a user authority activation code list, and store the association relationship between the user authority activation code and the corresponding information to be authorized;
S2、接收第一用户上传的第一激活码,若所述用户权限激活码列表中存在所述第一激活码,则存储所述第一用户的唯一标识和所述第一激活码对应的待授权信息的第一关联关系,以及所述第一用户的唯一标识和所述第一激活码的第二关联关系。S2. Receive a first activation code uploaded by a first user. If the first activation code exists in the user permission activation code list, store a first association relationship between the unique identifier of the first user and the information to be authorized corresponding to the first activation code, and a second association relationship between the unique identifier of the first user and the first activation code.
为了解决上述技术问题,本发明采用的另一种技术方案为:In order to solve the above technical problems, another technical solution adopted by the present invention is:
一种批量授予用户权限的终端,包括存储器、处理器以及存储在所述存储器上并可在处理器上运行的计算机程序,所述处理器执行所述计算机程序时实现上述的一种批量授予用户权限的方法的各个步骤。A terminal for batch granting user permissions comprises a memory, a processor and a computer program stored in the memory and executable on the processor. When the processor executes the computer program, each step of the above-mentioned method for batch granting user permissions is implemented.
本发明的有益效果在于:根据接收到的待授权信息生成预设个数的用户权限激活码,之后用户根据激活码进行权限激活。因此,通过将用户的授权拆分为权限码生成和权限码激活两个阶段,在需要大批量授予用户权限的场景下,能够先针对要进行用户授权的对象以及要授予的角色大批量生成权限激活码,之后用户再根据权限激活码自行激活权限,在保证权限授予效率的同时,还能够极大地减少权限授予的错误率,保证权限授予准确性。The beneficial effect of the present invention is that a preset number of user permission activation codes are generated according to the received information to be authorized, and then the user activates the permission according to the activation code. Therefore, by splitting the user authorization into two stages: permission code generation and permission code activation, in the scenario where a large number of user permissions need to be granted, permission activation codes can be first generated in large quantities for the objects to be authorized and the roles to be granted, and then the user can activate the permission by himself according to the permission activation code, which can greatly reduce the error rate of permission granting and ensure the accuracy of permission granting while ensuring the efficiency of permission granting.
附图说明BRIEF DESCRIPTION OF THE DRAWINGS
图1为本发明实施例的一种批量授予用户权限的方法的流程图;FIG1 is a flow chart of a method for granting user permissions in batches according to an embodiment of the present invention;
图2为本发明实施例的一种批量授予用户权限的终端的示意图;FIG2 is a schematic diagram of a terminal for granting user permissions in batches according to an embodiment of the present invention;
图3为本发明实施例的权限激活码生成的流程图;FIG3 is a flow chart of generating a permission activation code according to an embodiment of the present invention;
图4为本发明实施例的权限激活码激活的流程图;FIG4 is a flow chart of activation of a permission activation code according to an embodiment of the present invention;
图5为本发明实施例的一种批量授予用户权限的方法的模块关系图;FIG5 is a module relationship diagram of a method for granting user permissions in batches according to an embodiment of the present invention;
标号说明:Description of labels:
1、一种批量授予用户权限的终端;2、存储器;3、处理器。1. A terminal for granting user permissions in batches; 2. Memory; 3. Processor.
具体实施方式Detailed ways
为详细说明本发明的技术内容、所实现目的及效果,以下结合实施方式并配合附图予以说明。In order to explain the technical content, achieved objectives and effects of the present invention in detail, the following is an explanation in combination with the implementation modes and the accompanying drawings.
请参照图1,本发明实施例提供了一种批量授予用户权限的方法,包括步骤:Referring to FIG. 1 , an embodiment of the present invention provides a method for granting user permissions in batches, including the steps of:
S1、根据接收到的待授权信息生成预设个数的用户权限激活码,得到用户权限激活码列表,并存储所述用户权限激活码与对应待授权信息的关联关系;S1. Generate a preset number of user authority activation codes according to the received information to be authorized, obtain a user authority activation code list, and store the association relationship between the user authority activation code and the corresponding information to be authorized;
S2、接收第一用户上传的第一激活码,若所述用户权限激活码列表中存在所述第一激活码,则存储所述第一用户的唯一标识和所述第一激活码对应的待授权信息的第一关联关系,以及所述第一用户的唯一标识和所述第一激活码的第二关联关系。S2. Receive a first activation code uploaded by a first user. If the first activation code exists in the user permission activation code list, store a first association relationship between the unique identifier of the first user and the information to be authorized corresponding to the first activation code, and a second association relationship between the unique identifier of the first user and the first activation code.
从上述描述可知,本发明的有益效果在于:根据接收到的待授权信息生成预设个数的用户权限激活码,之后用户根据激活码进行权限激活。因此,通过将用户的授权拆分为权限码生成和权限码激活两个阶段,在需要大批量授予用户权限的场景下,能够先针对要进行用户授权的对象以及要授予的角色大批量生成权限激活码,之后用户再根据权限激活码自行激活权限,在保证权限授予效率的同时,还能够极大地减少权限授予的错误率,保证权限授予准确性。From the above description, it can be seen that the beneficial effect of the present invention is that a preset number of user permission activation codes are generated according to the received information to be authorized, and then the user activates the permission according to the activation code. Therefore, by splitting the user authorization into two stages: permission code generation and permission code activation, in the scenario where a large number of user permissions need to be granted, permission activation codes can be generated in large quantities for the objects to be authorized and the roles to be granted, and then the user can activate the permission by himself according to the permission activation code. While ensuring the efficiency of permission granting, it can also greatly reduce the error rate of permission granting and ensure the accuracy of permission granting.
进一步地,步骤S1之前包括:Furthermore, before step S1, the following steps are included:
接收待授权信息,所述待授权信息包括待授权对象列表以及待授予角色列表,若所述待授权对象列表中待授权对象的信息是数据库中已有的对象信息,且所述待授予角色列表中待授予角色的信息是数据库中已有的角色信息,则执行步骤S1,否则,返回异常提示信息。Receive information to be authorized, the information to be authorized includes a list of objects to be authorized and a list of roles to be granted. If the information of the objects to be authorized in the list of objects to be authorized is object information already available in the database, and the information of the roles to be granted in the list of roles to be granted is role information already available in the database, execute step S1; otherwise, return an abnormal prompt message.
由上述描述可知,在批量授予用户权限前,先检查待授权对象和待授予角色是否都是合规信息,以保证整个权限授予过程的可靠性。From the above description, it can be seen that before granting user permissions in batches, first check whether the objects to be authorized and the roles to be granted are compliant information to ensure the reliability of the entire permission granting process.
进一步地,步骤S1中根据接收到的待授权信息生成预设个数的用户权限激活码,包括:Furthermore, in step S1, a preset number of user rights activation codes are generated according to the received information to be authorized, including:
为待授权信息中的每一个待授权对象生成预设个数的用户权限激活码;Generate a preset number of user permission activation codes for each object to be authorized in the information to be authorized;
当前每生成一个用户权限激活码时,判断当前生成的用户权限激活码是否唯一,若是,则继续生成下一个用户权限激活码,直至待授权对象对应的用户权限激活码的数量达到预设个数,若否,则重新生成当前的用户权限激活码。Each time a user permission activation code is generated, it is determined whether the currently generated user permission activation code is unique. If so, the next user permission activation code is generated until the number of user permission activation codes corresponding to the object to be authorized reaches a preset number. If not, the current user permission activation code is regenerated.
由上述描述可知,生成未出现过且唯一激活码之后,将激活码与待授权信息进行关联,在激活码关联并落库后再生成下一个激活码,以此方式能够保证激活码生成的唯一性。From the above description, it can be seen that after generating a unique activation code that has never appeared before, the activation code is associated with the information to be authorized. After the activation code is associated and stored in the database, the next activation code is generated. In this way, the uniqueness of the activation code generation can be guaranteed.
进一步地,步骤S2中,若所述用户权限激活码列表中存在所述第一激活码,之后还包括:Furthermore, in step S2, if the first activation code exists in the user authority activation code list, the method further includes:
判断所述第一激活码是否未激活且未过期,若否,则返回所述第一激活码无效的提示信息。It is determined whether the first activation code is not activated and has not expired. If not, a prompt message indicating that the first activation code is invalid is returned.
由上述描述可知,对于已经激活或者已经过期的激活码,为避免重复授权、授权冲突或者异常授权的情况,返回所述第一激活码无效的提示信息,能够保证批量用户授权的可靠性。From the above description, it can be seen that for an activated or expired activation code, in order to avoid repeated authorization, authorization conflict or abnormal authorization, a prompt message indicating that the first activation code is invalid is returned, which can ensure the reliability of batch user authorization.
进一步地,步骤S2中还包括:Furthermore, step S2 also includes:
若所述用户权限激活码列表中不存在所述第一激活码,则返回所述第一激活码无效的提示信息。If the first activation code does not exist in the user authority activation code list, a prompt message indicating that the first activation code is invalid is returned.
请参照图2,本发明另一实施例提供了一种批量授予用户权限的终端,包括存储器、处理器以及存储在所述存储器上并可在处理器上运行的计算机程序,所述处理器执行所述计算机程序时实现上述的一种批量授予用户权限的方法的各个步骤。Please refer to Figure 2, another embodiment of the present invention provides a terminal for batch granting of user permissions, including a memory, a processor, and a computer program stored in the memory and executable on the processor, and the processor implements the various steps of the above-mentioned method for batch granting of user permissions when executing the computer program.
本发明上述的一种批量授予用户权限的方法及终端,适用于在大批量授予用户权限时,保证权限授予的效率和准确性,以下通过具体的实施方式进行说明:The method and terminal for batch granting user permissions of the present invention are suitable for ensuring the efficiency and accuracy of permission granting when granting user permissions in large quantities, and are described below through specific implementation methods:
实施例一Embodiment 1
请参照图1、图3至图5,一种批量授予用户权限的方法,包括步骤:Referring to FIG. 1 and FIG. 3 to FIG. 5 , a method for granting user permissions in batches includes the following steps:
由权限激活码生成模块接收待授权信息,所述待授权信息包括待授权对象列表以及待授予角色列表,若所述待授权对象列表中待授权对象的信息是数据库中已有的对象信息,且所述待授予角色列表中待授予角色的信息是数据库中已有的角色信息,则执行步骤S1,否则,返回异常提示信息。。The authorization activation code generation module receives information to be authorized, including a list of objects to be authorized and a list of roles to be granted. If the information of the objects to be authorized in the list of objects to be authorized is the object information already in the database, and the information of the roles to be granted in the list of roles to be granted is the role information already in the database, then step S1 is executed; otherwise, an abnormal prompt message is returned.
本实施例中,待授权对象列表中包括授权对象的ID和类型,待授予角色列表中包括资源名。本实施例中还需要接收待生成激活码的预设个数,并对其进行合法性校验,即判断预设个数是否在个数设置区间内,若是,则记为合法,否则,记为不合法。In this embodiment, the list of objects to be authorized includes the ID and type of the authorization object, and the list of roles to be granted includes the resource name. In this embodiment, it is also necessary to receive a preset number of activation codes to be generated and perform a legality check on them, that is, to determine whether the preset number is within the number setting range. If so, it is recorded as legal, otherwise, it is recorded as illegal.
S1、根据接收到的待授权信息生成预设个数的用户权限激活码,得到用户权限激活码列表,并存储所述用户权限激活码与对应待授权信息的关联关系。S1. Generate a preset number of user authority activation codes according to the received information to be authorized, obtain a user authority activation code list, and store the association relationship between the user authority activation code and the corresponding information to be authorized.
其中,为待授权信息中的每一个待授权对象生成预设个数的用户权限激活码;当前每生成一个用户权限激活码时,判断当前生成的用户权限激活码是否唯一,若是,则继续生成下一个用户权限激活码,直至待授权对象对应的用户权限激活码的数量达到预设个数,若否,则重新生成当前的用户权限激活码。Among them, a preset number of user permission activation codes are generated for each object to be authorized in the information to be authorized; when each user permission activation code is generated, it is determined whether the currently generated user permission activation code is unique. If so, the next user permission activation code is continuously generated until the number of user permission activation codes corresponding to the object to be authorized reaches a preset number. If not, the current user permission activation code is regenerated.
具体的,根据字符集集合,随机生成未出现过且唯一的16位激活码,将激活码与待授权信息进行关联,在激活码关联并落库后再生成下一个激活码,以此方式保证激活码生成的唯一性。Specifically, based on the character set, a unique 16-digit activation code that has never appeared before is randomly generated, the activation code is associated with the information to be authorized, and the next activation code is generated after the activation code is associated and stored in the database, so as to ensure the uniqueness of the activation code generation.
在本实施例中,假设授权对象包括a区域、b区域,a区域ID为:id_a,类型为area;b区域ID为id_b,类型为area。角色列表中包括教师研修管理员yx_role,类型为role;区域管理员qy_role,类型role。此时a区域对象对应生成的激活码若为auth_code,则在关联表中存储:In this embodiment, it is assumed that the authorized objects include area a and area b. The ID of area a is id_a, and the type is area; the ID of area b is id_b, and the type is area. The role list includes teacher training administrator yx_role, and the type is role; regional administrator qy_role, and the type is role. At this time, if the activation code generated by the area a object is auth_code, it is stored in the association table:
auth_code,area,id_aauth_code,area,id_a
auth_code,role,qy_roleauth_code,role,qy_role
auth_code,role,yx_roleauth_code,role,yx_role
当待授权信息中的每一个待授权对象都生成预设个数的用户权限激活码,且激活码都进行关联后,返回用户权限激活码列表。When a preset number of user permission activation codes are generated for each object to be authorized in the information to be authorized, and the activation codes are associated, a user permission activation code list is returned.
S2、接收第一用户上传的第一激活码,若所述用户权限激活码列表中存在所述第一激活码,则存储所述第一用户的唯一标识和所述第一激活码对应的待授权信息的第一关联关系,以及所述第一用户的唯一标识和所述第一激活码的第二关联关系。S2. Receive a first activation code uploaded by a first user. If the first activation code exists in the user permission activation code list, store a first association relationship between a unique identifier of the first user and information to be authorized corresponding to the first activation code, and a second association relationship between the unique identifier of the first user and the first activation code.
具体的,在权限激活码激活模块中,若用户权限激活码列表中存在第一激活码,则进一步判断第一激活码是否未激活且未过期,若已激活或者已过期,则返回所述第一激活码无效的提示信息,若未激活且未过期,则存储所述第一用户的唯一标识和所述第一激活码对应的待授权信息的第一关联关系,以及所述第一用户的唯一标识和所述第一激活码的第二关联关系。Specifically, in the permission activation code activation module, if there is a first activation code in the user permission activation code list, it is further determined whether the first activation code is not activated and has not expired; if it has been activated or expired, a prompt message indicating that the first activation code is invalid is returned; if it has not been activated and has not expired, a first association relationship between the unique identifier of the first user and the information to be authorized corresponding to the first activation code, as well as a second association relationship between the unique identifier of the first user and the first activation code are stored.
若所述用户权限激活码列表中不存在所述第一激活码,则返回所述第一激活码无效的提示信息。If the first activation code does not exist in the user authority activation code list, a prompt message indicating that the first activation code is invalid is returned.
具体的,如图4所示,当第一用户通过第一激活码进行激活时,接收第一用户上传的第一激活码,根据第一激活码在用户权限激活码列表中查询激活码详情信息,若查询不到,则返回无效的激活码提示信息;若能够查询到,则校验激活码信息是否过期或者是否已激活,若是,则返回无效的激活码提示信息,否则,获取用户的userid,存储用户userid与激活码关联的待授权对象和待授予角色的关联关系,以及用户userid与激活码的关联关系。Specifically, as shown in Figure 4, when the first user activates through the first activation code, the first activation code uploaded by the first user is received, and the activation code details are queried in the user permission activation code list according to the first activation code. If the activation code cannot be found, an invalid activation code prompt message is returned; if the activation code can be found, it is checked whether the activation code information is expired or activated. If so, an invalid activation code prompt message is returned, otherwise, the userid of the user is obtained, and the association relationship between the userid and the object to be authorized and the role to be granted associated with the activation code, as well as the association relationship between the userid and the activation code are stored.
实施例二Embodiment 2
本实施例与实施例一的主要区别在于,提供了具体的应用场景:The main difference between this embodiment and the first embodiment is that a specific application scenario is provided:
某省级教务管理员需要对某市A区、B区的各50位教师授予班级管理与学生成绩管理的权限。A provincial-level academic administrator needs to grant class management and student grade management permissions to 50 teachers in District A and District B of a certain city.
步骤11、在后台权限激活码生成界面上,区域对象列表选择A区、B区,角色列表选择班级管理与学生成绩管理角色。Step 11. On the background permission activation code generation interface, select Area A and Area B in the area object list, and select the class management and student grade management roles in the role list.
步骤12、权限激活码生成接口参数,为每个区域对象批量生成预设个数的权限激活码,其中按照预设的激活码数量为A区和B区都生成预设个数的激活码,具体的:Step 12, permission activation code generation interface parameters, batch generate a preset number of permission activation codes for each area object, wherein a preset number of activation codes are generated for both area A and area B according to the preset number of activation codes, specifically:
步骤12.1、根据区域对象系统中存在合法的区域,校验角色列表是否是系统中已存在的角色。若校验失败则返回异常提示信息。Step 12.1: Verify whether the role list is a role that already exists in the system based on the valid regions in the region object system. If the verification fails, an exception prompt message is returned.
步骤12.2、根据字符集集合,随机生成16位激活码code,查询数据库中是否已存在该激活码code,若已存在,则继续生成激活码code,直至在数据库中查询不到生成的激活码code。Step 12.2: randomly generate a 16-digit activation code according to the character set, and query whether the activation code already exists in the database. If it does, continue to generate the activation code until the generated activation code cannot be found in the database.
步骤12.3、数据库中存储权限激活码code与授权信息的关联关系与过期时间。Step 12.3: The database stores the association relationship and expiration time between the permission activation code and the authorization information.
步骤12.4、依次完成步骤12.2与步骤12.3直至达到预设个数。Step 12.4: Complete steps 12.2 and 12.3 in sequence until the preset number is reached.
步骤12.5、返回权限激活码列表信息。Step 12.5: Return the permission activation code list information.
某省级教务管理员导出批量生成的激活码信息,并将导出的权限激活码文件加密后发送给某市管理员。某市管理员通过相关渠道(如邮件,微信,QQ等)将权限激活码发送到需要授权的教师。A provincial education administrator exports the activation code information generated in batches, encrypts the exported permission activation code file and sends it to a city administrator. The city administrator sends the permission activation code to the teachers who need authorization through relevant channels (such as email, WeChat, QQ, etc.).
教师收到权限激活码后,进行权限激活码激活,获取相应的权限。After receiving the permission activation code, the teacher activates the permission activation code to obtain the corresponding permissions.
步骤21、登录系统(教师需要提前进行账号注册),进入权限激活码激活界面,输入权限激活码进行激活。Step 21. Log in to the system (teachers need to register an account in advance), enter the permission activation code activation interface, and enter the permission activation code for activation.
步骤22、权限激活码激活接口接收到权限激活码参数,进行激活:Step 22: The permission activation code activation interface receives the permission activation code parameter and performs activation:
步骤22.1、根据权限激活码code查询激活码详情信息,若查询不到,则返回异常提示信息。Step 22.1. Query the activation code details according to the permission activation code code. If the code cannot be found, an exception prompt message is returned.
步骤22.2、校验激活码信息,若已过期或已激活,则返回响应错误信息。Step 22.2: Verify the activation code information. If it has expired or has been activated, return a response error message.
步骤22.3、从接口鉴权信息获取用户的userid,从数据库中查询权限激活码关联的权限信息;在数据库中存储userid与权限信息的关联关系。Step 22.3, obtain the userid of the user from the interface authentication information, query the permission information associated with the permission activation code from the database; store the association relationship between the userid and the permission information in the database.
步骤22.4、存储激活码与用户的关联关系。Step 22.4: Store the association between the activation code and the user.
某省级教务管理员还可以进入激活码管理界面,查看激活码激活信息,比如激活进度或者激活码被激活的用户信息。A provincial-level educational administrator can also enter the activation code management interface to view activation code activation information, such as activation progress or user information for which the activation code has been activated.
实施例三Embodiment 3
请参照图2,一种批量授予用户权限的终端1,包括存储器2、处理器3以及存储在所述存储器2上并可在处理器3上运行的计算机程序,所述处理器3执行所述计算机程序时实现实施例一或二的一种批量授予用户权限的方法的各个步骤。Please refer to Figure 2, a terminal 1 for batch granting of user permissions includes a memory 2, a processor 3, and a computer program stored in the memory 2 and executable on the processor 3. When the processor 3 executes the computer program, each step of a method for batch granting of user permissions in embodiment one or two is implemented.
综上所述,本发明提供的一种批量授予用户权限的方法及终端,将用户的授权拆分为权限码生成和权限码激活两个阶段。管理员专注于权限的颁发,通过相应渠道(可以是线下渠道或者线上渠道,如邮件,微信,QQ等)将生成的权限码发送给待授权的用户。待授权用户收到激活码后自主进行激活获取相应的权限。In summary, the method and terminal for batch granting user permissions provided by the present invention divides user authorization into two stages: permission code generation and permission code activation. The administrator focuses on issuing permissions and sends the generated permission code to the user to be authorized through the corresponding channel (which can be an offline channel or an online channel, such as email, WeChat, QQ, etc.). After receiving the activation code, the authorized user activates it autonomously to obtain the corresponding permissions.
现有技术中的其他方案,管理员无需事先收集用户信息,并在平台系统上对用户搜索绑定角色。特别是在多层级、大批量用户的授权场景,管理员事先收集用户,在系统上绑定用户,往往需要多轮反复(比如用户可能未注册,需要通知进行注册,用户收集信息有误等等),效率非常低下。而本发明中将繁琐低效的用户绑定角色的操作通过激活码方式下发给用户,由用户自主激活获取授权信息,无需管理员在平台系统上进行操作。In other solutions in the prior art, the administrator does not need to collect user information in advance and search for user binding roles on the platform system. Especially in multi-level and large-scale user authorization scenarios, the administrator collects users in advance and binds them to the system, which often requires multiple rounds of repetition (for example, the user may not be registered and needs to be notified to register, the user collected information is incorrect, etc.), which is very inefficient. In the present invention, the cumbersome and inefficient user role binding operation is sent to the user in the form of an activation code, and the user activates and obtains the authorization information independently, without the need for the administrator to operate on the platform system.
以上所述仅为本发明的实施例,并非因此限制本发明的专利范围,凡是利用本发明说明书及附图内容所作的等同变换,或直接或间接运用在相关的技术领域,均同理包括在本发明的专利保护范围内。The above descriptions are merely embodiments of the present invention and are not intended to limit the patent scope of the present invention. Any equivalent transformations made using the contents of the present invention's specification and drawings, or directly or indirectly applied in related technical fields, are also included in the patent protection scope of the present invention.
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410548106.9ACN118364441A (en) | 2024-05-06 | 2024-05-06 | Method and terminal for granting user permission in batches |
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202410548106.9ACN118364441A (en) | 2024-05-06 | 2024-05-06 | Method and terminal for granting user permission in batches |
| Publication Number | Publication Date |
|---|---|
| CN118364441Atrue CN118364441A (en) | 2024-07-19 |
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202410548106.9APendingCN118364441A (en) | 2024-05-06 | 2024-05-06 | Method and terminal for granting user permission in batches |
| Country | Link |
|---|---|
| CN (1) | CN118364441A (en) |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1443381A2 (en)* | 2003-01-31 | 2004-08-04 | Microsoft Corporation | Systems and methods for preventing piracy of volume licenses |
| WO2021051876A1 (en)* | 2019-09-18 | 2021-03-25 | 平安科技(深圳)有限公司 | Batch authorization method and apparatus for emails, and computer device and storage medium |
| US20220078018A1 (en)* | 2020-09-08 | 2022-03-10 | Micron Technology, Inc. | Leveraging a trusted party third-party hsm and database to securely share a key |
| CN114880648A (en)* | 2022-04-14 | 2022-08-09 | 统信软件技术有限公司 | Batch offline activation method, online activation method and activation system for operating system |
| CN116861466A (en)* | 2023-07-31 | 2023-10-10 | 招商银行股份有限公司 | Rights granting method, system and readable storage medium |
| CN117763509A (en)* | 2023-11-09 | 2024-03-26 | 深圳开维信息技术股份有限公司 | User authorization management system |
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| EP1443381A2 (en)* | 2003-01-31 | 2004-08-04 | Microsoft Corporation | Systems and methods for preventing piracy of volume licenses |
| WO2021051876A1 (en)* | 2019-09-18 | 2021-03-25 | 平安科技(深圳)有限公司 | Batch authorization method and apparatus for emails, and computer device and storage medium |
| US20220078018A1 (en)* | 2020-09-08 | 2022-03-10 | Micron Technology, Inc. | Leveraging a trusted party third-party hsm and database to securely share a key |
| CN114880648A (en)* | 2022-04-14 | 2022-08-09 | 统信软件技术有限公司 | Batch offline activation method, online activation method and activation system for operating system |
| CN116861466A (en)* | 2023-07-31 | 2023-10-10 | 招商银行股份有限公司 | Rights granting method, system and readable storage medium |
| CN117763509A (en)* | 2023-11-09 | 2024-03-26 | 深圳开维信息技术股份有限公司 | User authorization management system |
| Publication | Publication Date | Title |
|---|---|---|
| WO2021003751A1 (en) | Single-account multi-identity login method and apparatus, server, and storage medium | |
| JP7222036B2 (en) | Model training system and method and storage medium | |
| EP3905078B1 (en) | Identity verification method and system therefor | |
| CN109190410B (en) | Log behavior auditing method based on block chain in cloud storage environment | |
| CN113542288A (en) | Service authorization method, device, equipment and system | |
| JP2022000757A5 (en) | ||
| KR101451359B1 (en) | User account recovery | |
| CN113656780B (en) | Cross-chain access control method and device | |
| EP4224794B1 (en) | Resolving decentralized identifiers using multiple resolvers | |
| CN111369242A (en) | Method for recovering block chain assets through intelligent contracts, wallet and block chain link points | |
| CN105337925A (en) | A user account management method and device | |
| CN104580237B (en) | A method of logging in to a website and its server, client and peripherals | |
| JP2006311529A (en) | Authentication system and authentication method thereof, authentication server and authentication method thereof, recording medium, and program | |
| CN109639421B (en) | Method for retrieving private key and server | |
| CN113221142A (en) | Authorization service processing method, device, equipment and system | |
| CN113849798A (en) | Secure login authentication method, system, computer equipment and storage medium | |
| CN113037505B (en) | Method and system for realizing trusted Web application | |
| CN118118227A (en) | Unified identity authentication method and device | |
| US20060136737A1 (en) | System and method for password validation | |
| WO2025036418A1 (en) | Blockchain-based data management method, apparatus, and system and electronic device | |
| CN118364441A (en) | Method and terminal for granting user permission in batches | |
| CN111931230A (en) | Data authorization method and device, storage medium and electronic device | |
| CN112861092B (en) | Method and system for realizing single-terminal login restriction based on JWT authentication application | |
| CN111555887A (en) | Block chain certificate compatibility processing method and device and computer storage medium | |
| WO2006069901A1 (en) | Method and system for providing and utilizing a network trusted context |
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination |