欢迎光临汤雪华的博客

一个人一辈子能坚持做好一件事情就够了!坚持是一种刻意的练习,不断寻找缺点突破缺点的过程,而不是重复做某件事情。
  博客园  :: 首页  :: 新随笔  :: 联系 :: 订阅 订阅  :: 管理

RBAC模型速记

Posted on 2015-06-08 10:32  netfocus  阅读(1002)  评论(1编辑  收藏  举报

RBAC Model

core concept: user,role,permission,operation,resource

  1. user has many roles, assign role to user; one role can be assigned to many users.
  2. user has many permissions, assign permission to user; one permission can be assigned to many users.
  3. role has many permissions, a role is a package of permissions.
  4. operation is like add, update, delete, import, download, visible, invisible, etc.
  5. resource is like menu, button, or other screen elements.
  6. permission has many resources and operations; one resource can be used by many permissions; one operation can be used by many permissions.