开发者

What is more appropriate way of managing Users, their roles, modules and permission? [closed]

问答 作者:
Closed. This question needs to be more focused. It is not currently accepting answers.

Want to improve this question? Update the question so it focuses on one problem only by editing this post.

Closed 9 years ago.

Improve this question

We have a web application where we need to create functionality to manage users, roles , modules and their permissions.

Below is the design we have created. can anyone Let me know if it is proper way of implementing such functionality?

User table will have two columns as follows

1) Id 2) Name

Role table will have Role Id and role name.

A user can have multiple roles hence, we will have a user role reference table which wi开发者_高级运维ll have user id and role id.

Role can be Admin, User, Moderator etc.

There can be lots of modules like Country , States, Orders, Divisions etc.

Each role will have access to certain modules like Admin will have access to all modules.

User will have access to few modules like Order only and so on.

So for this we have a separate static Modules table which will have module id and name.

We will have another Role Module reference table which will hold the information of which role have access to which modules.

Again, each user will have some roles and thus will have access to certain modules.

Now access to this modules is also based on permissions.

Like User will have only read permissions on States and Country i.e. he can only view the details.

Admin will have write permissions on states and country so that he can add, edit and delete them.

So, how do i go about implementing/designing this whole functionality in java?

Tables:

  • User (userID PK, name, etc...)
  • Role (roleID PK, name UQ, etc...)
  • UserRole (userID, roleID, PK(userID, roleID) dategranted etc...)
  • Module (moduleID PK, name UQ, etc...)
  • RoleModuleAccess (roleID, moduleID, PK(roleID, moduleID), accessFlags)

To find out the access a user @userID has in a module @moduleID:

select accessFlags
from RoleModuleAccess rma 
    inner join UserRole ur on ur.roleID = rma.roleID
where rma.moduleID = @moduleID and ur.userID = @userID

继续阅读:databasespringsql

更多精彩内容

0

上一篇:

下一篇:

精彩评论

暂无评论...
登录 注册
Qedev.com
验证码 换一张
取 消

最新问答

问答排行榜

法律声明:本站内容均为网友上传,网站举办方负责审核和监督,

如存在版权或非法内容,欢迎举报,我们将尽快予以删除。

Copyright © 2018-2020 开发者. All rights reserved.

Powered by 开发者

ICP备案号: 京ICP备10032868号-9