计算机应用 ›› 2012, Vol. 32 ›› Issue (06): 1782-1786.DOI: 10.3724/SP.J.1087.2012.01782

• 典型应用 • 上一篇    

区域卫生信息化中单点登录系统的设计与实现

骆嘉伟1,唐国英2   

  1. 1. 湖南大学 信息科学与工程学院,长沙410082
    2. 湖南大学 信息科学与工程学院,长沙 410082
  • 收稿日期:2011-11-28 修回日期:2012-01-10 发布日期:2012-06-04 出版日期:2012-06-01
  • 通讯作者: 唐国英
  • 作者简介:骆嘉伟(1964-),女,福建惠安人,教授,博士生导师,主要研究方向:数据挖掘、生物信息处理;〓唐国英(1986-),女,湖南衡阳人,硕士研究生,主要研究方向:信息系统集成。
  • 基金资助:
    国家自然科学基金资助项目;湖南省科技计划资助项目

Design and implementation of single sign-on system in regional health informatization

LUO Jia-wei1,TANG Guo-ying2   

  1. 1. College of Information Science and Engineering, Hunan University, Changsha Hunan 410082, China
    2. School of Information Science and Engineering, Hunan University, Changsha Hunan 410082, China
  • Received:2011-11-28 Revised:2012-01-10 Online:2012-06-04 Published:2012-06-01
  • Contact: TANG Guo-ying

摘要: 针对区域卫生信息化平台中的多个应用系统的统一认证授权和单一登录,以及基于角色的访问控制模型不能直接应用到单点登录中等问题,提出了一种基于角色组的角色控制策略和JASIG-CAS相结合的统一身份认证系统。中央认证服务(CAS)服务端引用MyBatis技术有效展示了子系统信息,各个应用系统之间采用Axis2来实现用户信息同步,并利用Session存储用户在各个系统中的权限来减少对数据库的频繁访问,从而显著改善了平台的性能。该单点登录系统实现了统一用户管理、统一权限分配、统一平台风格样式等功能。最后,采用专业压力测试工具LoadRunner8.0对平台进行了性能测试和分析,测试结果表明该系统总体性能稳定,平台设计合理。

关键词: 区域卫生信息化, 单点登录, 中央认证服务, 访问控制, 性能测试

Abstract: To address unified authentication and authorization, Single Sign-On (SSO) of multiple applications and that the Role-Based Access Control (RBAC) model can not be directly applied to the SSO problems in regional health information platform, this paper proposed a method based on a combination of role group control strategy and JASIG-CAS unified identity authentication system. Central Authentication Service (CAS) server used MyBatis technology to effectively show the subsystem information. Axis2 was used between the various application systems to keep consistency of user information. Besides, the authors made use of Session to store each users permissions to reduce the frequency of database access, thus significantly improving the performance of the platform. The SSO system achieved functions including unified user management, uniform assignment of permissions, unified platform features and so on. At last, the professional pressure testing platform LoadRunner8.0 was applied to the test and analysis of performance. The testing results show the performance of the system is stable and the design of the platform is reasonable.

Key words: Regional health information, SSO (Single Sign-on), CAS (Central Authentication Service), access control, Performance test