摘要： 可扩展信息系统的建设可运用领域工程需求方法，将领域对象从系统中分离出来形成领域对象向导，系统管理员可根据向导完成领域对象的建立，从而实现系统的动态可扩展功能，而扩展的系统应能实现对用户的安全访问控制。通过分析基于角色的访问控制(RBAC)模型，在Struts, Spring和Hibernate集成框架下，给出一种全方位可扩展的动态自定制信息系统中基于RBAC模型的访问控制模块的实现方法，论述模块的后台数据库设计和模块实现等关键技术。

关键词: 基于角色的访问控制, 构件, J2EE框架, 可扩展

Abstract: Extensible information system can use the domain project demand analysis method to separate the domain object from the system to produce the domain object guide. System manager can establish the domain object according to this guide to implement the system’s dynamic expansion, and the expansion system can implement the security access control. Through analyzing the Role-Based Access Control(RBAC) model, based on the integration framework of Struts, Spring and Hibernate, this paper proposes an access control scheme based on RBAC model, suitable for those dynamic information system, which can be Omni-directional expansion. And some relative key technologies for database design and module implementation are presented.

Key words: Role-Based Access Control(RBAC), component, J2EE frame, extensible

中图分类号: 

• TP309