CN114067473B - Access control authority management method, device and equipment in comprehensive scheduling system - Google Patents
Access control authority management method, device and equipment in comprehensive scheduling system Download PDFInfo
- Publication number
- CN114067473B CN114067473B CN202010789542.7A CN202010789542A CN114067473B CN 114067473 B CN114067473 B CN 114067473B CN 202010789542 A CN202010789542 A CN 202010789542A CN 114067473 B CN114067473 B CN 114067473B
- Authority
- CN
- China
- Prior art keywords
- data
- access control
- control authority
- permission
- access
- Prior art date
- Legal status (The legal status is an assumption and is not a legal conclusion. Google has not performed a legal analysis and makes no representation as to the accuracy of the status listed.)
- Active
Links
- 238000007726 management method Methods 0.000 title claims abstract description 88
- 238000012545 processing Methods 0.000 claims abstract description 63
- 238000000034 method Methods 0.000 claims abstract description 47
- 230000004044 response Effects 0.000 claims abstract description 22
- 230000001360 synchronised effect Effects 0.000 claims description 43
- 238000012795 verification Methods 0.000 claims description 35
- 230000008859 change Effects 0.000 claims description 10
- 230000008569 process Effects 0.000 abstract description 9
- 238000010586 diagram Methods 0.000 description 17
- 230000006870 function Effects 0.000 description 7
- 230000004048 modification Effects 0.000 description 7
- 238000012986 modification Methods 0.000 description 7
- 238000004590 computer program Methods 0.000 description 5
- 230000005540 biological transmission Effects 0.000 description 4
- 238000013524 data verification Methods 0.000 description 4
- 238000004891 communication Methods 0.000 description 3
- 238000012217 deletion Methods 0.000 description 3
- 230000037430 deletion Effects 0.000 description 3
- 238000012544 monitoring process Methods 0.000 description 3
- 238000005516 engineering process Methods 0.000 description 2
- 239000000835 fiber Substances 0.000 description 2
- 230000003287 optical effect Effects 0.000 description 2
- 230000001902 propagating effect Effects 0.000 description 2
- RYGMFSIKBFXOCR-UHFFFAOYSA-N Copper Chemical compound [Cu] RYGMFSIKBFXOCR-UHFFFAOYSA-N 0.000 description 1
- 229910052802 copper Inorganic materials 0.000 description 1
- 239000010949 copper Substances 0.000 description 1
- 230000014509 gene expression Effects 0.000 description 1
- 238000004519 manufacturing process Methods 0.000 description 1
- 230000007246 mechanism Effects 0.000 description 1
- 238000012806 monitoring device Methods 0.000 description 1
- 239000004065 semiconductor Substances 0.000 description 1
- 230000003068 static effect Effects 0.000 description 1
Images
Classifications
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/30—Individual registration on entry or exit not involving the use of a pass
- G07C9/38—Individual registration on entry or exit not involving the use of a pass with central registration
-
- G—PHYSICS
- G07—CHECKING-DEVICES
- G07C—TIME OR ATTENDANCE REGISTERS; REGISTERING OR INDICATING THE WORKING OF MACHINES; GENERATING RANDOM NUMBERS; VOTING OR LOTTERY APPARATUS; ARRANGEMENTS, SYSTEMS OR APPARATUS FOR CHECKING NOT PROVIDED FOR ELSEWHERE
- G07C9/00—Individual registration on entry or exit
- G07C9/20—Individual registration on entry or exit involving the use of a pass
- G07C9/27—Individual registration on entry or exit involving the use of a pass with central registration
-
- H—ELECTRICITY
- H04—ELECTRIC COMMUNICATION TECHNIQUE
- H04L—TRANSMISSION OF DIGITAL INFORMATION, e.g. TELEGRAPHIC COMMUNICATION
- H04L63/00—Network architectures or network communication protocols for network security
- H04L63/10—Network architectures or network communication protocols for network security for controlling access to devices or network resources
Landscapes
- Physics & Mathematics (AREA)
- General Physics & Mathematics (AREA)
- Engineering & Computer Science (AREA)
- Computer Hardware Design (AREA)
- Computer Security & Cryptography (AREA)
- Computing Systems (AREA)
- General Engineering & Computer Science (AREA)
- Computer Networks & Wireless Communication (AREA)
- Signal Processing (AREA)
- Storage Device Security (AREA)
Abstract
The application discloses an access control authority management method in a comprehensive scheduling system, which comprises the following steps: receiving an access control authority management message; acquiring first access control authority data, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system; and generating a response message corresponding to the access control authority management message according to the first access control authority data. The method can conveniently and directly manage the access control authority, and can improve the safety of line operation because the system switching is not needed in the process of managing the access control authority.
Description
Technical Field
The present disclosure relates to the field of computer technologies, and in particular, to a method, a device, and a system for managing access permissions in an integrated scheduling system.
Background
In the field of rail transit, an Integrated Operation Scheduling System (IOSS) is generally used to centrally monitor and manage trains and devices on a line, such as ticket selling devices, monitoring devices, and access control devices.
At present, when an integrated scheduling system is used to manage access control devices on a line, management of access control permissions is generally implemented through a client of an Access Control System (ACS), for example, for issuing cards, that is, handling items of an access card for a newly added person, or checking, modifying, adding, deleting items related to permission management, such as personnel permissions, the client provided by the third-party access control system is generally required to handle the items.
The existing method for managing the access control authority in the comprehensive scheduling system has the problem of inconvenience due to frequent system switching; on the other hand, the comprehensive scheduling system usually needs to display the monitoring data of various devices on the line in a full screen for 24 hours, and when the access control authority management is performed, because the currently displayed display interface of the comprehensive scheduling system needs to be exited and switched to the display interface of the client provided by the third-party access control system, a user cannot check the monitoring data on the line in the process of performing the access control authority management, and certain safety risks exist.
Disclosure of Invention
An object of the disclosed embodiment is to provide a new technical solution for access control authority management.
According to a first aspect of the present disclosure, a method for managing access permissions in an integrated scheduling system is provided, which is applied to an integrated scheduling server, and the method includes:
receiving an access control authority management message;
acquiring first access control authority data, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system;
and generating a response message corresponding to the access control authority management message according to the first access control authority data.
According to a second aspect of the present disclosure, the present disclosure further provides an access permission management apparatus, applied to a comprehensive scheduling server, including:
the message receiving module is used for receiving the access control authority management message;
the system comprises an access control authority data acquisition module, a first access control authority data processing module and a second access control authority data processing module, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system;
and the response message generation module is used for generating a response message corresponding to the access control authority management message according to the first access control authority data.
According to a third aspect of the present disclosure, there is also provided an electronic device comprising the apparatus according to the second aspect of the present disclosure; alternatively, the electronic device includes: a memory for storing executable instructions; a processor configured to execute the electronic device according to the control of the instruction to perform the method according to the first aspect of the present disclosure.
The method has the advantages that in the operation process of the comprehensive scheduling system, when the access control authority is required to be managed, the comprehensive scheduling server of the comprehensive scheduling system does not need to be switched to the client side provided by the access control system for operation, but obtains the first access control authority data which is synchronously processed with the second access control authority data stored in the access control system according to the received access control authority management message, and can conveniently and quickly generate the response message corresponding to the access control authority management message according to the first access control authority data. The method can conveniently complete the management of the access control authority in the comprehensive scheduling system, and can improve the safety of line operation because the switching operation of a system interface is not needed in the process of the access control authority management.
Other features of the present disclosure and advantages thereof will become apparent from the following detailed description of exemplary embodiments thereof, which proceeds with reference to the accompanying drawings.
Drawings
The accompanying drawings, which are incorporated in and constitute a part of the specification, illustrate embodiments of the disclosure and together with the description, serve to explain the principles of the disclosure.
Fig. 1 is a schematic structural diagram of an integrated scheduling system according to an embodiment of the present disclosure.
Fig. 2 is a schematic flow chart of a method for managing access permissions in an integrated scheduling system according to an embodiment of the present disclosure.
Fig. 3 is a schematic diagram illustrating a flow of first access control permission data provided by an embodiment of the present disclosure.
Fig. 4 is a schematic diagram of a flow of second access permission data provided by the embodiment of the present disclosure.
Fig. 5 is a schematic block diagram of an access control authority management device according to an embodiment of the disclosure.
Fig. 6 is a schematic structural diagram of an electronic device provided in an embodiment of the present disclosure.
Detailed Description
Various exemplary embodiments of the present disclosure will now be described in detail with reference to the accompanying drawings. It should be noted that: the relative arrangement of parts and steps, numerical expressions and numerical values set forth in these embodiments do not limit the scope of the present disclosure unless specifically stated otherwise.
The following description of at least one exemplary embodiment is merely illustrative in nature and is in no way intended to limit the disclosure, its application, or uses.
Techniques, methods, and apparatus known to one of ordinary skill in the relevant art may not be discussed in detail but are intended to be part of the specification where appropriate.
In all examples shown and discussed herein, any particular value should be construed as merely illustrative, and not limiting. Thus, other examples of the exemplary embodiments may have different values.
It should be noted that: like reference numbers and letters refer to like items in the following figures, and thus, once an item is defined in one figure, further discussion thereof is not required in subsequent figures.
< method examples >
In order to solve the problems that the prior art cannot directly provide access right management but needs to switch to a third-party access control system to execute the right management when the access right needs to be managed in the operation process of the integrated scheduling system, the integrated scheduling system is inconvenient and safe, the embodiment provides an access right management method in the integrated scheduling system, and please refer to fig. 1, which is a schematic structural diagram of the integrated scheduling system provided by the embodiment. As shown in fig. 1, according to the configuration characteristics of the integrated scheduling system, the method provided in this embodiment enables a user to directly manage access permissions through the integrated scheduling system by integrating an access permission management plug-in the integrated scheduling system; in addition, in order to ensure that the access control equipment in the line can be accurately monitored and controlled, and the authority of the user can be verified and controlled, the method provided by the embodiment keeps the server application of the access control system running in the server in the process of running the comprehensive scheduling system, and the server is responsible for monitoring and controlling the access control equipment on the line and verifying the authority of the user; when a user executes access control authority management through an access control authority management plug-in the comprehensive scheduling system, relative real-time synchronization of access control authority data stored in the comprehensive scheduling system and access control authority data stored in the access control system is guaranteed through a certain mechanism, and therefore the user can conveniently and accurately manage access control authority.
Fig. 2 is a schematic flowchart of a method for managing access permissions in an integrated scheduling system according to an embodiment of the present disclosure, where the method may be implemented by a server in the integrated scheduling system, for example, by an integrated scheduling server responsible for integrated scheduling.
Referring to FIG. 2, the method of the present embodiment may include the following steps S2100-S2300, which will be described in detail below.
And step S2100, receiving an access control authority management message.
In specific implementation, the terminal device can run a client application of the comprehensive scheduling system; when an operator or a user of the integrated scheduling system, namely an IOSS user needs to manage access control authority, an access control authority management message can be generated based on the triggering operation of the user in the access control authority management plug-in, and the terminal device sends the access control authority management message to the integrated scheduling server.
In this embodiment, the management operation of an operator or an IOSS user for the access control authority may be a "card issuing" operation, that is, adding information of a new person in the access control system and binding information of an access control card; or, operations such as "permission addition", "permission modification", "permission deletion" or "permission check" may be performed on a certain person; still alternatively, the operation may be "card swiping record viewing" for card swiping records or "door point information viewing" for door point information.
Step S2200, obtaining first access control authority data, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system.
The first access permission data may be data stored in the integrated scheduling system, and may specifically be data stored in the integrated scheduling server, and further may be data stored in a database communicatively connected to the integrated scheduling server.
The second access permission data may be data stored in the access control system, specifically, data stored in a server running a server application of the access control system, and further, data stored in a database communicatively connected to the server.
In this embodiment, for convenience of querying and managing data, the first access control permission data is data stored in a database in communication connection with the integrated scheduling server, and the second access control permission data is data stored in a database in communication connection with a server running a server application of the access control system.
After the integrated scheduling server in the integrated scheduling system receives the access control permission management message, the integrated scheduling server can acquire the latest first access control permission data according to the message to respond to the message.
The embodiment provides a method for performing data synchronization on first access control authority data and second access control authority data, which specifically includes the following steps: acquiring the category information of processing items corresponding to the access control authority management message; according to the category information and the access control authority management message, obtaining a target access control authority data record to be synchronized in third access control authority data, wherein the third access control authority data comprises the first access control authority data and a data record to be subjected to data synchronization processing in the second access control authority data; and according to the target access permission data record, performing data synchronous processing on the first access permission data and the second access permission data.
The third access permission data is used for storing data of access permission data records to be synchronized and synchronized, that is, may be interface data.
In this embodiment, the third access permission data may also be data stored in a database, and the database may be in communication with the integrated scheduling server and a server running a server application of the access control system.
It should be noted that, in a specific implementation, the databases storing the first, second, and third access permission data may be the same database, and in the database, the three access permission data are kept logically isolated, for example, the first, second, and third access permission data may be data in different instances of the same database, respectively.
The obtaining of the category information of the processing item corresponding to the access control authority management message includes: when the processing item corresponding to the access control authority management message is an information change item, determining the category information as first category information for representing data change; and when the processing item corresponding to the access control authority management message is an information query item, determining the category information as second category information for representing data query.
In this embodiment, the information change item includes at least one of the following items: adding the entrance guard card items, the permission adding items, the permission modifying items and the permission deleting items; the information query transaction includes at least one of: the system comprises door point information inquiry items, authority information inquiry items and card swiping record inquiry items.
Please refer to fig. 3, which is a schematic flow chart illustrating first access permission data according to an embodiment of the disclosure. As shown in fig. 3, in the integrated scheduling system, for the management operation of the user for changing the access right, for example, operations such as "card issuing", "right adding", "right modifying", and "right deleting", the processing item corresponding to the access right management message corresponding to the user can be determined as the information change item, and the category information corresponding to the message can be determined as the first category information; and for the management operation of the user for viewing the access control authority, for example, the operations of "access point information viewing", "authority viewing", "card swiping record viewing", and the like, it may be determined that the processing item corresponding to the access control authority management message corresponding to the user is an information query item, and it may be determined that the category information corresponding to the message is the second category information.
In specific implementation, when the category information is the first category information, the obtaining, according to the category information and the access right management message, a target access right data record to be synchronized in third access right data includes: generating the target access control authority data record in the third access control authority data according to the access control authority management message; setting the verification identification information in the target access control authority data record as first verification identification information representing that the data is not verified; and setting the synchronous identification information in the target entrance guard permission data record as first synchronous identification information representing that the data is not synchronous.
As shown in fig. 3, in the integrated scheduling system, when the card issuing operation is performed for the user, that is, when the processing item corresponding to the access right management message is an "newly added access card item", because the newly added access card relates to the personnel information and department information of the newly added personnel and the card information of the access card, and because the item needs to be verified and authorized by the service end of the access control system, the information needs to be written into the third access right data according to an agreed format, so that the service end of the access control system verifies and authorizes the data, and data synchronization of the two systems is realized.
Specifically, in the case that the processing item is a "newly added access card item", corresponding data records may be generated in the personnel information interface table, the department information interface table, and the card information interface table of the third access permission data as target access permission data records for the service end of the access control system to check.
Referring to fig. 3, in the integrated scheduling system, for the operation of changing the authority by the user, that is, the operations of "authority addition", "authority modification", and "authority deletion", the change information of the authority may be written into the third access authority data according to the agreed format, so that the service end of the access control system checks and authorizes the data, and the data synchronization of the two systems is realized.
Specifically, when the processing item is any one of the items such as the "addition item of authority", "modification item of authority", and "deletion item of authority", a corresponding data record may be generated in the authority information interface table of the third access authority data as the target access authority data record for the server of the access control system to verify.
After the target access permission data record is obtained, data synchronous processing can be performed on the first access permission data and the second access permission data according to the target access permission data record.
In specific implementation, the performing data synchronization processing on the first access control permission data and the second access control permission data according to the target access control permission data record includes: acquiring the verification identification information in the target access control authority data record according to a preset time interval; and under the condition that the verification identification information passes the verification of the representation data, updating the first access control permission data according to the target access control permission data record, wherein the second verification identification information is obtained after the access control system passes the verification of the target access control permission data record.
Please refer to fig. 4, which is a schematic flow diagram of second access permission data provided in an embodiment of the present disclosure, in which for a target access permission data record in third access permission data, a server of an access control system may obtain the target access permission data record according to a preset time interval, perform verification on data in the data record, and after the verification is completed, set verification identification information in the data record as second verification identification information representing that the data verification passes or as third verification identification information representing that the data verification fails according to a verification result.
Correspondingly, the comprehensive scheduling server of the comprehensive scheduling system may also obtain the verification identification information in the target access permission data record according to the preset time interval, and update the data in the target access permission data record to the first access permission data stored in the comprehensive scheduling server under the condition that the verification identification information is the second verification identification information that represents that the data verification passes.
It should be noted that, in order to save storage space, the integrated scheduling server may not update the first access control permission data stored in the integrated scheduling server, but directly generate a response message of "failed verification" to the user when the verification identification information in the target access control permission data record is the third verification identification information that represents that the data verification fails; of course, the target access permission data record that fails to pass the verification may also be updated to the first access permission data according to the requirement, which is not limited herein.
In addition, in this embodiment, in order to avoid repeated processing of data records, after the step of updating the first access permission data according to the target access permission data record, the method further includes: and setting the synchronous identification information in the target access control permission data record as second synchronous identification information with synchronized representation data.
In the above, when the category information of the processing item corresponding to the access right management message is the first category information, how to perform the data synchronization processing on the first access right data and the second access right data is described in detail; hereinafter, when the type information of the processing item corresponding to the access right management message is the second type information, how to perform the data synchronization processing on the first access right data and the second access right data will be described.
In this embodiment, when the category information is the second category information, the obtaining, according to the category information and the access right management message, a target access right data record to be synchronized in third access right data includes: inquiring data records of which the synchronous identification information is first synchronous identification information representing that the data is not synchronous in a door point data record set and a card swiping data record set of the third access control authority data; and acquiring the target entrance guard authority data record according to the inquired data record.
Referring to fig. 3, in the integrated scheduling system, for the checking operation of the user on the access permission information, for example, the personnel permission information, the access point information, the card swiping record information, and the like, a data record matching the user inquiry information may be directly inquired in the permission information table or the card swiping record table of the first access permission data, and the data record is provided for the user to check.
In specific implementation, since a server of the access control system may generate a card swiping record or update door point information, in order to keep data synchronization of the first access permission data and the second access permission data, as shown in fig. 4, when information generated or maintained by the access control system, for example, card swiping record information, door point information, and the like, is changed, the access control system may write the information into a card swiping record information interface table or a door point information interface table of the third access permission data according to a preset time interval, and set synchronization identification information in a data record corresponding to the information as first synchronization identification information representing that data is not synchronized.
When the processing item corresponding to the access control authority management message received by the comprehensive scheduling server is a data query item, the comprehensive scheduling server may query an unsynchronized data record in a door point data record set and a card swiping data record set of the third access control authority data, that is, a door point information interface table and a card swiping record information interface table, as the target access control authority data.
As shown in fig. 4, in this case, after the comprehensive scheduling server obtains the target access permission data, according to the target access permission data record, performing data synchronization processing on the first access permission data and the second access permission data includes: and updating the first access control permission data according to the target access control permission data record.
After the step S2200, executing a step S2300, and generating a response message corresponding to the access right management message according to the first access right data.
After first access permission data which is subjected to data synchronization processing with second access permission data stored in an access control system is acquired, a response message corresponding to the access permission management message can be generated according to the first access permission data.
For example, when the access right management message is a modification operation for a certain user right, a response message indicating that the modification is successful or failed can be generated according to a verification result of the access control system on the right modification information.
It should be noted that, after generating a response message corresponding to the access right management message according to the first access right data, the method provided in this embodiment further includes: and providing the response message to the terminal equipment so that the terminal equipment can show the processing result of the access control authority management operation executed by the user to the user according to the response message.
As can be seen from the foregoing steps S2100 to S2300, in the method for managing access permissions according to this embodiment, in the process of operating the integrated scheduling system, when access permissions need to be managed, switching to a client provided by the access control system is not required to be performed, but according to the received access permission management message, the integrated scheduling server obtains first access permission data that is performed with data synchronization processing on second access permission data stored in the access control system, and according to the first access permission data, a response message corresponding to the access permission association message can be generated conveniently and quickly. The method can directly and conveniently complete the management of the access control authority in the comprehensive scheduling system, and can improve the safety of line operation because the switching operation of a system interface is not needed in the process of the access control authority management.
< apparatus embodiment >
Corresponding to the above method embodiment, in this embodiment, an access right management apparatus is further provided, and as shown in fig. 5, the apparatus 5000 may include a message receiving module 5100, an access right data obtaining module 5200, and a response message generating module 5300.
The message receiving module 5100 is configured to receive an access right management message.
The access permission data obtaining module 5200 is configured to obtain first access permission data, where the first access permission data is data subjected to data synchronization processing with second access permission data, the first access permission data is data stored in the integrated scheduling system, and the second access permission data is data stored in the access control system.
In one embodiment, the apparatus 5000 further includes a data synchronization module, configured to obtain category information of a processing item corresponding to the access right management message; according to the category information and the access control authority management message, obtaining a target access control authority data record to be synchronized in third access control authority data, wherein the third access control authority data comprise the first access control authority data and a data record to be subjected to data synchronization processing in the second access control authority data; and according to the target access permission data record, performing data synchronous processing on the first access permission data and the second access permission data.
In an embodiment, when the data synchronization module acquires the category information of the processing item corresponding to the access right management message, the data synchronization module may be configured to: when the processing item corresponding to the access control authority management message is an information change item, determining the category information as first category information for representing data change; and when the processing item corresponding to the access control authority management message is an information query item, determining the category information as second category information for representing data query.
In one embodiment, when the category information is the first category information, the data synchronization module obtains a target access permission data record to be synchronized in third access permission data according to the category information and the access permission management message, and includes: generating the target access control authority data record in the third access control authority data according to the access control authority management message; setting the verification identification information in the target access control authority data record as first verification identification information representing that the data is not verified; and setting the synchronous identification information in the target entrance guard permission data record as first synchronous identification information representing that the data is not synchronous.
In an embodiment, when the data synchronization module performs data synchronization processing on the first access control permission data and the second access control permission data according to the target access control permission data record, the data synchronization module may be configured to: acquiring the verification identification information in the target access control authority data record according to a preset time interval; and under the condition that the verification identification information passes the verification of the representation data, updating the first access control permission data according to the target access control permission data record, wherein the second verification identification information is obtained after the access control system passes the verification of the target access control permission data record.
In one embodiment, the data synchronization module may be further operable to: and setting the synchronous identification information in the target access control permission data record as second synchronous identification information with synchronized representation data.
In an embodiment, when the category information is the second category information, the data synchronization module is configured to, when obtaining a target access permission data record to be synchronized in the third access permission data according to the category information and the access permission management message, be configured to: inquiring data records of which the synchronous identification information is first synchronous identification information representing unsynchronized data in a door point data record set and a card swiping data record set of the third access control authority data; and acquiring the target access control authority data record according to the inquired data record.
In an embodiment, when performing data synchronization processing on the first access permission data and the second access permission data according to the target access permission data record, the data synchronization module may be configured to: and updating the first access control permission data according to the target access control permission data record. The response message generating module 5300 is configured to generate a response message corresponding to the access right management message according to the first access right data.
In one embodiment, the apparatus 5000 further includes a response message providing module, configured to provide the response message to the terminal device.
< apparatus embodiment >
In this embodiment, an electronic device is further provided, which may include the access permission management apparatus 5000 according to any embodiment of the present disclosure, and is configured to implement the access permission management method in the integrated scheduling system provided in any embodiment of the present disclosure.
As shown in fig. 6, the electronic device 6000 may further include a processor 6200 and a memory 6000, the memory 6100 being configured to store executable instructions; the processor 6200 is configured to operate the electronic device according to the control of the instruction to execute the access right management method in the integrated scheduling system according to any embodiment of the disclosure.
The above modules of the apparatus 6000 may be implemented by the processor 6200 executing the instructions to execute the access right management method in the integrated scheduling system according to any embodiment of the present disclosure.
The present disclosure may be systems, methods, and/or computer program products. The computer program product may include a computer-readable storage medium having computer-readable program instructions embodied thereon for causing a processor to implement various aspects of the present disclosure.
The computer readable storage medium may be a tangible device that can hold and store the instructions for use by the instruction execution device. The computer readable storage medium may be, for example, but not limited to, an electronic memory device, a magnetic memory device, an optical memory device, an electromagnetic memory device, a semiconductor memory device, or any suitable combination of the foregoing. More specific examples (a non-exhaustive list) of the computer readable storage medium would include the following: a portable computer diskette, a hard disk, a Random Access Memory (RAM), a read-only memory (ROM), an erasable programmable read-only memory (EPROM or flash memory), a Static Random Access Memory (SRAM), a portable compact disc read-only memory (CD-ROM), a Digital Versatile Disc (DVD), a memory stick, a floppy disk, a mechanical coding device, such as punch cards or in-groove projection structures having instructions stored thereon, and any suitable combination of the foregoing. Computer-readable storage media as used herein is not to be interpreted as a transitory signal per se, such as a radio wave or other freely propagating electromagnetic wave, an electromagnetic wave propagating through a waveguide or other transmission medium (e.g., optical pulses through a fiber optic cable), or an electrical signal transmitted through an electrical wire.
The computer-readable program instructions described herein may be downloaded from a computer-readable storage medium to a respective computing/processing device, or to an external computer or external storage device via a network, such as the internet, a local area network, a wide area network, and/or a wireless network. The network may include copper transmission cables, fiber optic transmission, wireless transmission, routers, firewalls, switches, gateway computers and/or edge servers. The network adapter card or network interface in each computing/processing device receives computer-readable program instructions from the network and forwards the computer-readable program instructions for storage in a computer-readable storage medium in the respective computing/processing device.
The computer program instructions for carrying out operations of the present disclosure may be assembler instructions, instruction Set Architecture (ISA) instructions, machine-related instructions, microcode, firmware instructions, state setting data, or source or object code written in any combination of one or more programming languages, including an object oriented programming language such as Smalltalk, C + + or the like and conventional procedural programming languages, such as the "C" programming language or similar programming languages. The computer-readable program instructions may execute entirely on the user's computer, partly on the user's computer, as a stand-alone software package, partly on the user's computer and partly on a remote computer or entirely on the remote computer or server. In the case of a remote computer, the remote computer may be connected to the user's computer through any type of network, including a Local Area Network (LAN) or a Wide Area Network (WAN), or the connection may be made to an external computer (for example, through the Internet using an Internet service provider). In some embodiments, the electronic circuitry that can execute the computer-readable program instructions implements aspects of the present disclosure by utilizing the state information of the computer-readable program instructions to personalize the electronic circuitry, such as a programmable logic circuit, a Field Programmable Gate Array (FPGA), or a Programmable Logic Array (PLA).
Various aspects of the present disclosure are described herein with reference to flowchart illustrations and/or block diagrams of methods, apparatus (systems) and computer program products according to embodiments of the disclosure. It will be understood that each block of the flowchart illustrations and/or block diagrams, and combinations of blocks in the flowchart illustrations and/or block diagrams, can be implemented by computer-readable program instructions.
These computer-readable program instructions may be provided to a processor of a general purpose computer, special purpose computer, or other programmable data processing apparatus to produce a machine, such that the instructions, which execute via the processor of the computer or other programmable data processing apparatus, create means for implementing the functions/acts specified in the flowchart and/or block diagram block or blocks. These computer readable program instructions may also be stored in a computer readable storage medium that can direct a computer, programmable data processing apparatus, and/or other devices to function in a particular manner, such that the computer readable medium storing the instructions comprises an article of manufacture including instructions which implement the function/act specified in the flowchart and/or block diagram block or blocks.
The computer readable program instructions may also be loaded onto a computer, other programmable data processing apparatus, or other devices to cause a series of operational steps to be performed on the computer, other programmable apparatus or other devices to produce a computer implemented process such that the instructions which execute on the computer, other programmable apparatus or other devices implement the functions/acts specified in the flowchart and/or block diagram block or blocks.
The flowchart and block diagrams in the figures illustrate the architecture, functionality, and operation of possible implementations of systems, methods and computer program products according to various embodiments of the present disclosure. In this regard, each block in the flowchart or block diagrams may represent a module, segment, or portion of instructions, which comprises one or more executable instructions for implementing the specified logical function(s). In some alternative implementations, the functions noted in the block may occur out of the order noted in the figures. For example, two blocks shown in succession may, in fact, be executed substantially concurrently, or the blocks may sometimes be executed in the reverse order, depending upon the functionality involved. It will also be noted that each block of the block diagrams and/or flowchart illustration, and combinations of blocks in the block diagrams and/or flowchart illustration, can be implemented by special purpose hardware-based systems which perform the specified functions or acts, or combinations of special purpose hardware and computer instructions. It is well known to those skilled in the art that implementation by hardware, by software, and by a combination of software and hardware are equivalent.
Having described embodiments of the present disclosure, the foregoing description is intended to be exemplary, not exhaustive, and not limited to the disclosed embodiments. Many modifications and variations will be apparent to those of ordinary skill in the art without departing from the scope and spirit of the described embodiments. The terminology used herein is chosen in order to best explain the principles of the embodiments, the practical application, or improvements made to the technology in the marketplace, or to enable others of ordinary skill in the art to understand the embodiments disclosed herein. The scope of the present disclosure is defined by the appended claims.
Claims (11)
1. The access control authority management method in the comprehensive scheduling system is applied to a comprehensive scheduling server and comprises the following steps:
receiving an access control authority management message;
acquiring first access control authority data, wherein the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system;
generating a response message corresponding to the access control authority management message according to the first access control authority data;
the method comprises the following steps of carrying out data synchronization processing on the first access permission data and the second access permission data:
acquiring the category information of processing items corresponding to the access control authority management message;
according to the category information and the access control authority management message, obtaining a target access control authority data record to be synchronized in third access control authority data, wherein the third access control authority data comprises a data record to be subjected to data synchronization processing in the first access control authority data and a data record to be subjected to data synchronization processing in the second access control authority data;
and according to the target access control authority data record, performing data synchronous processing on the first access control authority data and the second access control authority data.
2. The method according to claim 1, wherein the obtaining of the category information of the processing item corresponding to the access control authority management message includes:
when the processing item corresponding to the access control authority management message is an information change item, determining the category information as first category information for representing data change; and
and when the processing item corresponding to the access control authority management message is an information query item, determining the category information as second category information for representing data query.
3. The method according to claim 2, wherein, in a case that the category information is the first category information, obtaining a target access permission data record to be synchronized in third access permission data according to the category information and the access permission management message includes:
generating the target access control authority data record in the third access control authority data according to the access control authority management message;
setting the verification identification information in the target access control authority data record as first verification identification information representing that the data is not verified; and
and setting the synchronous identification information in the target access control authority data record as first synchronous identification information representing that the data is not synchronous.
4. The method of claim 2, wherein the performing data synchronization processing on the first access control permission data and the second access control permission data according to the target access control permission data record comprises:
acquiring verification identification information in the target access control authority data record according to a preset time interval;
and under the condition that the verification identification information passes the verification of the representation data, updating the first access control permission data according to the target access control permission data record, wherein the second verification identification information is obtained after the access control system passes the verification of the target access control permission data record.
5. The method of claim 4, wherein after the step of updating the first access rights data according to the target access rights data record, the method further comprises:
and setting the synchronous identification information in the target entrance guard permission data record as second synchronous identification information with synchronized representation data.
6. The method according to claim 2, wherein, in a case that the category information is the second category information, obtaining a target access permission data record to be synchronized in third access permission data according to the category information and the access permission management message includes:
inquiring data records of which the synchronous identification information is first synchronous identification information representing unsynchronized data in a door point data record set and a card swiping data record set of the third access control authority data;
and acquiring the target entrance guard authority data record according to the inquired data record.
7. The method according to claim 6, wherein the performing data synchronization processing on the first access permission data and the second access permission data according to the target access permission data record comprises:
and updating the first access control permission data according to the target access control permission data record.
8. The method of claim 2, wherein the information change transaction comprises at least one of: adding the entrance guard card items, the permission adding items, the permission modifying items and the permission deleting items;
the information query transaction includes at least one of: the system comprises door point information inquiry items, authority information inquiry items and card swiping record inquiry items.
9. The method of claim 1, further comprising:
and providing the response message to the terminal equipment.
10. An access control authority management device is applied to an integrated scheduling server and comprises the following components:
the message receiving module is used for receiving the access control authority management message;
the system comprises an access control authority data acquisition module, a data processing module and a data processing module, wherein the access control authority data acquisition module is used for acquiring first access control authority data, the first access control authority data is data subjected to data synchronization processing with second access control authority data, the first access control authority data is data stored in the comprehensive scheduling system, and the second access control authority data is data stored in the access control system;
the response message generating module is used for generating a response message corresponding to the access control authority management message according to the first access control authority data;
wherein, entrance guard's authority management device still includes:
the data synchronization module is used for acquiring the category information of the processing items corresponding to the access control authority management message; according to the category information and the access control authority management message, obtaining a target access control authority data record to be synchronized in third access control authority data, wherein the third access control authority data comprises a data record to be subjected to data synchronization processing in the first access control authority data and a data record to be subjected to data synchronization processing in the second access control authority data; and according to the target access control authority data record, performing data synchronous processing on the first access control authority data and the second access control authority data.
11. An electronic device comprising the apparatus of claim 10; or,
the electronic device includes:
a memory for storing executable instructions;
a processor configured to execute the electronic device to perform the method according to the control of the instruction, wherein the method is as claimed in any one of claims 1 to 9.
Priority Applications (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010789542.7A CN114067473B (en) | 2020-08-07 | 2020-08-07 | Access control authority management method, device and equipment in comprehensive scheduling system |
Applications Claiming Priority (1)
| Application Number | Priority Date | Filing Date | Title |
|---|---|---|---|
| CN202010789542.7A CN114067473B (en) | 2020-08-07 | 2020-08-07 | Access control authority management method, device and equipment in comprehensive scheduling system |
Publications (2)
| Publication Number | Publication Date |
|---|---|
| CN114067473A CN114067473A (en) | 2022-02-18 |
| CN114067473B true CN114067473B (en) | 2023-01-06 |
Family
ID=80232877
Family Applications (1)
| Application Number | Title | Priority Date | Filing Date |
|---|---|---|---|
| CN202010789542.7A Active CN114067473B (en) | 2020-08-07 | 2020-08-07 | Access control authority management method, device and equipment in comprehensive scheduling system |
Country Status (1)
| Country | Link |
|---|---|
| CN (1) | CN114067473B (en) |
Families Citing this family (1)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN116935525A (en) * | 2023-08-24 | 2023-10-24 | 上海天跃科技股份有限公司 | Access control method, device, equipment, system and storage medium |
Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104240014A (en) * | 2014-08-25 | 2014-12-24 | 中国航天科工集团第四研究院指挥自动化技术研发与应用中心 | Door access control method and door access control platform |
| CN108961475A (en) * | 2017-05-19 | 2018-12-07 | 腾讯科技(深圳)有限公司 | A kind of gate inhibition's dispositions method and gate inhibition's deployment services device |
Family Cites Families (6)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN101009516B (en) * | 2006-01-26 | 2011-05-04 | 华为技术有限公司 | A method, system and device for data synchronization |
| US8019863B2 (en) * | 2008-03-28 | 2011-09-13 | Ianywhere Solutions, Inc. | Synchronizing events between mobile devices and servers |
| JP6292810B2 (en) * | 2013-10-02 | 2018-03-14 | キヤノン株式会社 | Data synchronization method, data synchronization apparatus, and program |
| CN104217288A (en) * | 2014-08-29 | 2014-12-17 | 广东建邦计算机软件有限公司 | Security management device and system for community comprehensive grid |
| JP7132346B2 (en) * | 2018-09-11 | 2022-09-06 | 株式会社日立国際電気 | Matching system and matching server |
| CN109710688B (en) * | 2018-11-26 | 2021-10-08 | 福建天泉教育科技有限公司 | Data real-time comparison and verification method and message middleware |
-
2020
- 2020-08-07 CN CN202010789542.7A patent/CN114067473B/en active Active
Patent Citations (2)
| Publication number | Priority date | Publication date | Assignee | Title |
|---|---|---|---|---|
| CN104240014A (en) * | 2014-08-25 | 2014-12-24 | 中国航天科工集团第四研究院指挥自动化技术研发与应用中心 | Door access control method and door access control platform |
| CN108961475A (en) * | 2017-05-19 | 2018-12-07 | 腾讯科技(深圳)有限公司 | A kind of gate inhibition's dispositions method and gate inhibition's deployment services device |
Also Published As
| Publication number | Publication date |
|---|---|
| CN114067473A (en) | 2022-02-18 |
Similar Documents
| Publication | Publication Date | Title |
|---|---|---|
| US11005850B2 (en) | Access control for database | |
| US9391860B2 (en) | Systems and methods for managing computing systems utilizing augmented reality | |
| US20240249360A1 (en) | Systems and methods for managing assets | |
| CN106843976B (en) | Method and apparatus for generating image file | |
| US20160164860A1 (en) | Single Sign On Availability | |
| CN112136306B (en) | Central control system of multimedia exhibition hall and control method and device thereof | |
| CN112910904B (en) | Login method and device of multi-service system | |
| US10055436B2 (en) | Alert management | |
| US10860722B2 (en) | Security risk management system, server, control method, and non-transitory computer-readable medium | |
| CN114399292A (en) | Method, computing device and medium for controlling business approval process | |
| CN114067473B (en) | Access control authority management method, device and equipment in comprehensive scheduling system | |
| US20130046866A1 (en) | Meter access management system | |
| US11620295B2 (en) | Method, system and program product for monitoring EAS devices | |
| WO2017142742A1 (en) | Authorized time lapse view of system and credential data | |
| CN109858914A (en) | Block chain data verification method, device, computer equipment and readable storage medium storing program for executing | |
| CN111597112A (en) | Automatic test method and device and electronic equipment | |
| CN113886870A (en) | Data processing method, device, equipment and storage medium | |
| US10210315B2 (en) | Managing and tracking commands associated with a change on a computer system | |
| US11294774B2 (en) | Method for managing backup data on first, second, or third virtual machine management platform | |
| CN108023732A (en) | A kind of data guard method, device, equipment and storage medium | |
| US11088923B2 (en) | Multi-stage authorization | |
| EP3528148A1 (en) | Method and system for providing a notification from a provider to a consumer for providing the notification to a user group | |
| CN114357426A (en) | Interface access verification method and device, electronic equipment and readable storage medium | |
| US9424406B2 (en) | Asset protection based on redundantly associated trusted entitlement verification | |
| CN111865916A (en) | Resource management method and device and electronic equipment |
Legal Events
| Date | Code | Title | Description |
|---|---|---|---|
| PB01 | Publication | ||
| PB01 | Publication | ||
| SE01 | Entry into force of request for substantive examination | ||
| SE01 | Entry into force of request for substantive examination | ||
| GR01 | Patent grant | ||
| GR01 | Patent grant |