[关键词]
[摘要]
从城轨信息系统快速发展带来的各子系统技术方案各异、缺乏统一规划的现状出发,说明复杂信息系统在统一用户登录与管理上存在的问题,探讨根据4A安全管理规范、利用单点登录(SSO)技术、采用Spring Security OAuth2+JWT方案来构建统一用户登录与管理系统,实现统一的账号管理、统一的认证管理、统一的授权管理以及统一的操作审计功能,从而解决城轨云众多信息化系统的统一用户登录与管理难题。
[Key word]
[Abstract]
Based on the current state of different technical solutions and a lack of unified planning of various subsystems because of the rapid development of urban rail information systems, this study explains the problems existing in the unified user login and management of complex information system. Moreover, this study focusses on the application of spring security using single sign on (SSO) technology and a 4A security management standard Oauth2 + JWT scheme to build a unified user login and management system to achieve a unified account and authentication management, and unified authorization management and operation audit functions, so as to solve the problem of unified user login and management of many urban rail cloud information systems.
[中图分类号]
U231
[基金项目]