2.1 Rights Management Concept
Authorization management generally refers to the security rules or security policies set by the system that users can access and can only access their authorized resources. Authority management appears in almost any system, provided that a system with user and password authentication is required.
In the concept of rights management, there are two very important terms:Authentication: After successfully logging in to the system through the user name and password, the system can obtain the role identity of the current user.Authorization: According to the current user's role, the system grants the corresponding authority resources that can be operated
2.2 Three objects are needed to complete rights management
User: It mainly contains user name, password and role information of the current user, which can realize authentication operation.
Role: It mainly contains the role name, role description and the authority information of the current role, which can realize the authorization operation.
Authority: Authority can also be called menu, which mainly contains
information such as current authority name,
url
address, etc., which can realize dynamic display of menu.
Note: Among the three objects, users and roles are in a many-to-many relationship, roles and permissions are in a many-to-many relationship, and users and permissions have no direct relationship. The two are related through roles.