摘要
介绍了基于角色的访问控制理论和Spring的框架,给出了一个以角色为基础、基于Spring的访问控制系统框架及实现。设计方案将各种资源抽象成URL和MODTHOD,采用Filter技术集中管理,从而实现应用逻辑与安全逻辑分离的目的。
This paper introduces an access control theory based on rote and Spring frame, it also gives out the realization and frame of the access control system based on role and Spring. The design scheme abstracts various kinds of resources into URL and MODTHOD, the design scheme also uses Filter technology to manage centrally, in this way the application logic and the security logic have been separated.
出处
《计算机工程》
CAS
CSCD
北大核心
2005年第B07期201-202,252,共3页
Computer Engineering