节点文献
基于Spring Security的Web系统安全模块的设计与实现
Design and Implementation of Web System Security Module Based on Spring Security
【作者】 龚凡;
【导师】 王玉明;
【作者基本信息】 华中科技大学 , 电子与通信工程, 2011, 硕士
【摘要】 信息化逐渐成为当今社会的趋势,“科研管理数据库”的实施,作为信息化建设的手段,为改善当前科研管理部门的信息管理现状,具有非常重要的意义。“科研管理数据库”用户种类繁多,层级关系复杂,业务资源丰富,对系统的安全性提出了很高的要求。为了解决“科研管理数据库”的安全问题,本文构建了一个简单、灵活、可扩展的安全模块。本文遵循Java的软件体系结构,采用SSH组合框架进行了安全模块的开发,并参照Java安全相关规范,紧密结合应用系统的安全需求,选取Spring Security安全框架,进行了安全模块的设计与实现。本文完成了包括账号、角色、权限在内的基础数据管理功能,并扩展了Spring Security安全框架安全认证、访问控制、会话管理以及认证数据源等的实现。针对“科研管理数据库”安全控制灵活多变的特点,设计了分级账号管理与自动角色分配机制,并将应用系统的权限体系设计为树形结构,提高了权限应用的友好性。本文引入SSH及Spring Security开发框架,提高了应用系统安全模块的开发效率,使安全模块与业务模块的开发相分离,降低了代码的耦合性。设计并实现的安全模块,大大降低了因用户量大带来的账号维护工作,提供了很好的可用性和可扩展性,特别是近乎零侵入式的实现,给系统的开发也带来了极大的方便。
【Abstract】 Information becomes the trend in today’s society. The implementation of "Research Management Database" has very important significance to improve the current information management status of the scientific management department as a method of information construction."Research Management Database" puts high demands for system security forward which has a wide range of users, complex hierarchy and rich business resource. In order to solve the security issues of "Research Management Database", this paper builds a simple, flexible and scalable security module.This paper follows the Java software architecture, combines with SSH framework, and with reference to Java security-related specifications, in close connection with the security requirements, selects the security framework of Spring Security to design and realize the security module. This paper completes the basic data management functions of account, role and right modules, and extends security authentication, access control and session management, authentication data source in Spring Security. For "Research Management Database" flexible security control feature, it designs a hierarchical account management and automatic role assignment mechanism, and designs a right system of tree structure to enhance the authority application friendly. This paper introduces the framework of SSH and Spring Security, improves application development efficiency of the security module, separates the development of security module and service module and reduces the code coupling. The security module which greatly reduces the volume brought about by the user account maintenance, offers a good usability and scalability, in particular, to achieve near-zero invasive to the system’s development has also brought a very Great convenience.
【Key words】 Web Security; Spring Security Framework; Authentication and Authorization; Access Control; Hierarchical management;
- 【网络出版投稿人】 华中科技大学 【网络出版年期】2012年 07期
- 【分类号】TP393.08
- 【被引频次】23
- 【下载频次】487