From 26799db56ebfa9c45c3e18eda0f3a205a9bd4285 Mon Sep 17 00:00:00 2001 From: chennian Date: Mon, 20 Dec 2021 10:41:14 +0800 Subject: [PATCH 1/8] Signed-off-by:chennian --- LICENSE | 177 ++++++++++++++++++++++++++++++++++++++++++++++++++++++++ 1 file changed, 177 insertions(+) create mode 100755 LICENSE diff --git a/LICENSE b/LICENSE new file mode 100755 index 000000000..4a459866a --- /dev/null +++ b/LICENSE @@ -0,0 +1,177 @@ + + Apache License + Version 2.0, January 2004 + http://www.apache.org/licenses/ + + TERMS AND CONDITIONS FOR USE, REPRODUCTION, AND DISTRIBUTION + + 1. Definitions. + + "License" shall mean the terms and conditions for use, reproduction, + and distribution as defined by Sections 1 through 9 of this document. + + "Licensor" shall mean the copyright owner or entity authorized by + the copyright owner that is granting the License. + + "Legal Entity" shall mean the union of the acting entity and all + other entities that control, are controlled by, or are under common + control with that entity. For the purposes of this definition, + "control" means (i) the power, direct or indirect, to cause the + direction or management of such entity, whether by contract or + otherwise, or (ii) ownership of fifty percent (50%) or more of the + outstanding shares, or (iii) beneficial ownership of such entity. + + "You" (or "Your") shall mean an individual or Legal Entity + exercising permissions granted by this License. + + "Source" form shall mean the preferred form for making modifications, + including but not limited to software source code, documentation + source, and configuration files. + + "Object" form shall mean any form resulting from mechanical + transformation or translation of a Source form, including but + not limited to compiled object code, generated documentation, + and conversions to other media types. + + "Work" shall mean the work of authorship, whether in Source or + Object form, made available under the License, as indicated by a + copyright notice that is included in or attached to the work + (an example is provided in the Appendix below). + + "Derivative Works" shall mean any work, whether in Source or Object + form, that is based on (or derived from) the Work and for which the + editorial revisions, annotations, elaborations, or other modifications + represent, as a whole, an original work of authorship. For the purposes + of this License, Derivative Works shall not include works that remain + separable from, or merely link (or bind by name) to the interfaces of, + the Work and Derivative Works thereof. + + "Contribution" shall mean any work of authorship, including + the original version of the Work and any modifications or additions + to that Work or Derivative Works thereof, that is intentionally + submitted to Licensor for inclusion in the Work by the copyright owner + or by an individual or Legal Entity authorized to submit on behalf of + the copyright owner. For the purposes of this definition, "submitted" + means any form of electronic, verbal, or written communication sent + to the Licensor or its representatives, including but not limited to + communication on electronic mailing lists, source code control systems, + and issue tracking systems that are managed by, or on behalf of, the + Licensor for the purpose of discussing and improving the Work, but + excluding communication that is conspicuously marked or otherwise + designated in writing by the copyright owner as "Not a Contribution." + + "Contributor" shall mean Licensor and any individual or Legal Entity + on behalf of whom a Contribution has been received by Licensor and + subsequently incorporated within the Work. + + 2. Grant of Copyright License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + copyright license to reproduce, prepare Derivative Works of, + publicly display, publicly perform, sublicense, and distribute the + Work and such Derivative Works in Source or Object form. + + 3. Grant of Patent License. Subject to the terms and conditions of + this License, each Contributor hereby grants to You a perpetual, + worldwide, non-exclusive, no-charge, royalty-free, irrevocable + (except as stated in this section) patent license to make, have made, + use, offer to sell, sell, import, and otherwise transfer the Work, + where such license applies only to those patent claims licensable + by such Contributor that are necessarily infringed by their + Contribution(s) alone or by combination of their Contribution(s) + with the Work to which such Contribution(s) was submitted. If You + institute patent litigation against any entity (including a + cross-claim or counterclaim in a lawsuit) alleging that the Work + or a Contribution incorporated within the Work constitutes direct + or contributory patent infringement, then any patent licenses + granted to You under this License for that Work shall terminate + as of the date such litigation is filed. + + 4. Redistribution. You may reproduce and distribute copies of the + Work or Derivative Works thereof in any medium, with or without + modifications, and in Source or Object form, provided that You + meet the following conditions: + + (a) You must give any other recipients of the Work or + Derivative Works a copy of this License; and + + (b) You must cause any modified files to carry prominent notices + stating that You changed the files; and + + (c) You must retain, in the Source form of any Derivative Works + that You distribute, all copyright, patent, trademark, and + attribution notices from the Source form of the Work, + excluding those notices that do not pertain to any part of + the Derivative Works; and + + (d) If the Work includes a "NOTICE" text file as part of its + distribution, then any Derivative Works that You distribute must + include a readable copy of the attribution notices contained + within such NOTICE file, excluding those notices that do not + pertain to any part of the Derivative Works, in at least one + of the following places: within a NOTICE text file distributed + as part of the Derivative Works; within the Source form or + documentation, if provided along with the Derivative Works; or, + within a display generated by the Derivative Works, if and + wherever such third-party notices normally appear. The contents + of the NOTICE file are for informational purposes only and + do not modify the License. You may add Your own attribution + notices within Derivative Works that You distribute, alongside + or as an addendum to the NOTICE text from the Work, provided + that such additional attribution notices cannot be construed + as modifying the License. + + You may add Your own copyright statement to Your modifications and + may provide additional or different license terms and conditions + for use, reproduction, or distribution of Your modifications, or + for any such Derivative Works as a whole, provided Your use, + reproduction, and distribution of the Work otherwise complies with + the conditions stated in this License. + + 5. Submission of Contributions. Unless You explicitly state otherwise, + any Contribution intentionally submitted for inclusion in the Work + by You to the Licensor shall be under the terms and conditions of + this License, without any additional terms or conditions. + Notwithstanding the above, nothing herein shall supersede or modify + the terms of any separate license agreement you may have executed + with Licensor regarding such Contributions. + + 6. Trademarks. This License does not grant permission to use the trade + names, trademarks, service marks, or product names of the Licensor, + except as required for reasonable and customary use in describing the + origin of the Work and reproducing the content of the NOTICE file. + + 7. Disclaimer of Warranty. Unless required by applicable law or + agreed to in writing, Licensor provides the Work (and each + Contributor provides its Contributions) on an "AS IS" BASIS, + WITHOUT WARRANTIES OR CONDITIONS OF ANY KIND, either express or + implied, including, without limitation, any warranties or conditions + of TITLE, NON-INFRINGEMENT, MERCHANTABILITY, or FITNESS FOR A + PARTICULAR PURPOSE. You are solely responsible for determining the + appropriateness of using or redistributing the Work and assume any + risks associated with Your exercise of permissions under this License. + + 8. Limitation of Liability. In no event and under no legal theory, + whether in tort (including negligence), contract, or otherwise, + unless required by applicable law (such as deliberate and grossly + negligent acts) or agreed to in writing, shall any Contributor be + liable to You for damages, including any direct, indirect, special, + incidental, or consequential damages of any character arising as a + result of this License or out of the use or inability to use the + Work (including but not limited to damages for loss of goodwill, + work stoppage, computer failure or malfunction, or any and all + other commercial damages or losses), even if such Contributor + has been advised of the possibility of such damages. + + 9. Accepting Warranty or Additional Liability. While redistributing + the Work or Derivative Works thereof, You may choose to offer, + and charge a fee for, acceptance of support, warranty, indemnity, + or other liability obligations and/or rights consistent with this + License. However, in accepting such obligations, You may act only + on Your own behalf and on Your sole responsibility, not on behalf + of any other Contributor, and only if You agree to indemnify, + defend, and hold each Contributor harmless for any liability + incurred by, or claims asserted against, such Contributor by reason + of your accepting any such warranty or additional liability. + + END OF TERMS AND CONDITIONS \ No newline at end of file -- Gitee From 59fedb2c95da1a7e902849ad1fabf8918146c0f1 Mon Sep 17 00:00:00 2001 From: chennian Date: Mon, 20 Dec 2021 03:24:19 +0000 Subject: [PATCH 2/8] add readme --- README.md | 44 +++++++++++++++++++++----------------------- 1 file changed, 21 insertions(+), 23 deletions(-) diff --git a/README.md b/README.md index ca5fcc80e..880f3bc5b 100644 --- a/README.md +++ b/README.md @@ -1,12 +1,26 @@ # security_access_token -#### 介绍 -{**以下是 Gitee 平台说明,您可以替换此简介** -Gitee 是 OSCHINA 推出的基于 Git 的代码托管平台(同时支持 SVN)。专为开发者提供稳定、高效、安全的云端软件开发协作平台 -无论是个人、团队、或是企业,都能够用 Gitee 实现代码托管、项目管理、协作开发。企业项目请看 [https://gitee.com/enterprises](https://gitee.com/enterprises)} - -#### 软件架构 -软件架构说明 +#### 简介 + ATM(AccessTokenManager)是OpenHarmony上基于AccessToken构建的统一的应用权限管理能力,应用的Accestoken信息主要包括应用身份标识APPID、用户ID,应用分身索引、应用APL等级、应用权限信息等。每个应用的Accestoken信息由一个32bits的设备内唯一标识符tokenID来标识。 + ATM模块主要提供如下功能: +- 提供基于tokenID的应用权限校验机制,应用访问敏感数据或者API时可以检查是否有对应的权限; +- 提供基于tokenID的应用权限校验机制,应用访问敏感数据或者API时可以检查是否有对应的权限; + +#### 缩略词 + +#### 目录 +/base/security/access_token +├── frameworks # 基础设施层 +│ ├── accesstoken +│ ├── tokensync +│ └── common # 标准系统权限管理基础设施层 +├── interfaces # 接口层 +│ └── innerkits # 外部接口层 +│ ├── accesstoken # 轻量系统、小型系统权限管理外部接口层 +│ └── tokensync # 标准系统权限管理外部接口层 +└── services # 服务层 + ├── accesstokenmanager # 轻量系统、小型系统权限管理服务层 + └── tokensyncmanager # 标准系统权限管理服务层 #### 安装教程 @@ -21,19 +35,3 @@ Gitee 是 OSCHINA 推出的基于 Git 的代码托管平台(同时支持 SVN 2. xxxx 3. xxxx -#### 参与贡献 - -1. Fork 本仓库 -2. 新建 Feat_xxx 分支 -3. 提交代码 -4. 新建 Pull Request - - -#### 特技 - -1. 使用 Readme\_XXX.md 来支持不同的语言,例如 Readme\_en.md, Readme\_zh.md -2. Gitee 官方博客 [blog.gitee.com](https://blog.gitee.com) -3. 你可以 [https://gitee.com/explore](https://gitee.com/explore) 这个地址来了解 Gitee 上的优秀开源项目 -4. [GVP](https://gitee.com/gvp) 全称是 Gitee 最有价值开源项目,是综合评定出的优秀开源项目 -5. Gitee 官方提供的使用手册 [https://gitee.com/help](https://gitee.com/help) -6. Gitee 封面人物是一档用来展示 Gitee 会员风采的栏目 [https://gitee.com/gitee-stars/](https://gitee.com/gitee-stars/) -- Gitee From e4f6e79747575658de09fd1fa383348d23138277 Mon Sep 17 00:00:00 2001 From: chennian Date: Mon, 20 Dec 2021 03:26:29 +0000 Subject: [PATCH 3/8] update README.md. --- README.md | 2 +- 1 file changed, 1 insertion(+), 1 deletion(-) diff --git a/README.md b/README.md index 880f3bc5b..9ba4825ea 100644 --- a/README.md +++ b/README.md @@ -4,7 +4,7 @@ ATM(AccessTokenManager)是OpenHarmony上基于AccessToken构建的统一的应用权限管理能力,应用的Accestoken信息主要包括应用身份标识APPID、用户ID,应用分身索引、应用APL等级、应用权限信息等。每个应用的Accestoken信息由一个32bits的设备内唯一标识符tokenID来标识。 ATM模块主要提供如下功能: - 提供基于tokenID的应用权限校验机制,应用访问敏感数据或者API时可以检查是否有对应的权限; -- 提供基于tokenID的应用权限校验机制,应用访问敏感数据或者API时可以检查是否有对应的权限; +- 提供基于tokenID的Accestoken信息查询,应用可以根据tokenID查询自身的APL等级等信息; #### 缩略词 -- Gitee From 1f18c01acc27c3dd94fbce0fe080ce5136cfdb34 Mon Sep 17 00:00:00 2001 From: chennian Date: Mon, 20 Dec 2021 03:26:58 +0000 Subject: [PATCH 4/8] update README.md. --- README.md | 1 + 1 file changed, 1 insertion(+) diff --git a/README.md b/README.md index 9ba4825ea..b82a26ee8 100644 --- a/README.md +++ b/README.md @@ -8,6 +8,7 @@ #### 缩略词 + #### 目录 /base/security/access_token ├── frameworks # 基础设施层 -- Gitee From da6d6f119ebd0860ee25085c109321e409f8b963 Mon Sep 17 00:00:00 2001 From: chennian Date: Mon, 20 Dec 2021 03:41:20 +0000 Subject: [PATCH 5/8] update --- README.md | 28 ++++++++++++++-------------- 1 file changed, 14 insertions(+), 14 deletions(-) diff --git a/README.md b/README.md index b82a26ee8..f256436e6 100644 --- a/README.md +++ b/README.md @@ -1,8 +1,8 @@ # security_access_token #### 简介 - ATM(AccessTokenManager)是OpenHarmony上基于AccessToken构建的统一的应用权限管理能力,应用的Accestoken信息主要包括应用身份标识APPID、用户ID,应用分身索引、应用APL等级、应用权限信息等。每个应用的Accestoken信息由一个32bits的设备内唯一标识符tokenID来标识。 - ATM模块主要提供如下功能: +ATM(AccessTokenManager)是OpenHarmony上基于AccessToken构建的统一的应用权限管理能力,应用的Accesstoken信息主要包括应用身份标识APPID、用户ID,应用分身索引、应用APL等级、应用权限信息等。每个应用的Accestoken信息由一个32bits的设备内唯一标识符tokenID来标识。 +ATM模块主要提供如下功能: - 提供基于tokenID的应用权限校验机制,应用访问敏感数据或者API时可以检查是否有对应的权限; - 提供基于tokenID的Accestoken信息查询,应用可以根据tokenID查询自身的APL等级等信息; @@ -10,18 +10,18 @@ #### 目录 -/base/security/access_token -├── frameworks # 基础设施层 -│ ├── accesstoken -│ ├── tokensync -│ └── common # 标准系统权限管理基础设施层 -├── interfaces # 接口层 -│ └── innerkits # 外部接口层 -│ ├── accesstoken # 轻量系统、小型系统权限管理外部接口层 -│ └── tokensync # 标准系统权限管理外部接口层 -└── services # 服务层 - ├── accesstokenmanager # 轻量系统、小型系统权限管理服务层 - └── tokensyncmanager # 标准系统权限管理服务层 +/base/security/access_token +├── frameworks # 框架层,作为基础功能目录,被interfaces和services使用 +│ ├── accesstoken # Accesstoken管理框架代码实现 +│ ├── tokensync # Accesstoken信息同步框架代码实现 +│ └── common # 框架公共代码实现 +├── interfaces # 接口层 +│ └── innerkits # 内部接口层 +│ ├── accesstoken # Accesstoken内部接口实现代码 +│ └── tokensync # Accesstoken信息同步内部接口实现代码 +└── services # 服务层 + ├── accesstokenmanager # Accesstoken管理服务代码 + └── tokensyncmanager # Accesstoken信息同步服务代码 #### 安装教程 -- Gitee From 75799b9aae7d67172f81dc8afdf592b26bf5a086 Mon Sep 17 00:00:00 2001 From: chennian Date: Mon, 20 Dec 2021 03:43:52 +0000 Subject: [PATCH 6/8] update --- README.md | 32 ++++++++++++++------------------ 1 file changed, 14 insertions(+), 18 deletions(-) diff --git a/README.md b/README.md index f256436e6..95f84beba 100644 --- a/README.md +++ b/README.md @@ -10,25 +10,21 @@ ATM模块主要提供如下功能: #### 目录 -/base/security/access_token -├── frameworks # 框架层,作为基础功能目录,被interfaces和services使用 -│ ├── accesstoken # Accesstoken管理框架代码实现 -│ ├── tokensync # Accesstoken信息同步框架代码实现 -│ └── common # 框架公共代码实现 -├── interfaces # 接口层 -│ └── innerkits # 内部接口层 -│ ├── accesstoken # Accesstoken内部接口实现代码 -│ └── tokensync # Accesstoken信息同步内部接口实现代码 -└── services # 服务层 - ├── accesstokenmanager # Accesstoken管理服务代码 - └── tokensyncmanager # Accesstoken信息同步服务代码 - -#### 安装教程 - -1. xxxx -2. xxxx -3. xxxx +``` +/base/security/access_token +├── frameworks # 框架层,作为基础功能目录,被interfaces和services使用 +│ ├── accesstoken # Accesstoken管理框架代码实现 +│ ├── tokensync # Accesstoken信息同步框架代码实现 +│ └── common # 框架公共代码实现 +├── interfaces # 接口层 +│ └── innerkits # 内部接口层 +│ ├── accesstoken # Accesstoken内部接口实现代码 +│ └── tokensync # Accesstoken信息同步内部接口实现代码 +└── services # 服务层 + ├── accesstokenmanager # Accesstoken管理服务代码 + └── tokensyncmanager # Accesstoken信息同步服务代码 +``` #### 使用说明 -- Gitee From 64dace61067742e96bfe168f86d4c1ea072710d7 Mon Sep 17 00:00:00 2001 From: chennian Date: Mon, 20 Dec 2021 03:49:58 +0000 Subject: [PATCH 7/8] update --- README.md | 25 ++++++++++++++++++++----- 1 file changed, 20 insertions(+), 5 deletions(-) diff --git a/README.md b/README.md index 95f84beba..5214408e6 100644 --- a/README.md +++ b/README.md @@ -1,15 +1,25 @@ -# security_access_token +# security_access_token + +- [简介](#section11660541593) +- [缩略词](#section161941989596) +- [目录](#section119744591305) +- [使用](#section137768191623) + - [接口说明](#section1551164914237) + - [使用说明](#section129654513264) + +- [相关仓](#section1371113476307) + +## 简介 -#### 简介 ATM(AccessTokenManager)是OpenHarmony上基于AccessToken构建的统一的应用权限管理能力,应用的Accesstoken信息主要包括应用身份标识APPID、用户ID,应用分身索引、应用APL等级、应用权限信息等。每个应用的Accestoken信息由一个32bits的设备内唯一标识符tokenID来标识。 ATM模块主要提供如下功能: - 提供基于tokenID的应用权限校验机制,应用访问敏感数据或者API时可以检查是否有对应的权限; - 提供基于tokenID的Accestoken信息查询,应用可以根据tokenID查询自身的APL等级等信息; -#### 缩略词 +## 缩略词 -#### 目录 +## 目录 ``` /base/security/access_token @@ -26,9 +36,14 @@ ATM模块主要提供如下功能: └── tokensyncmanager # Accesstoken信息同步服务代码 ``` -#### 使用说明 +## 使用 +### 接口说明 +### 使用说明 1. xxxx 2. xxxx 3. xxxx +## 相关仓 +安全子系统 +security\_access\_token -- Gitee From 530589fa0761c52d8c490c23cf177fa4885d5b2b Mon Sep 17 00:00:00 2001 From: chennian Date: Mon, 20 Dec 2021 06:05:40 +0000 Subject: [PATCH 8/8] Signed-off-by:chennian --- README.md | 4 +++- 1 file changed, 3 insertions(+), 1 deletion(-) diff --git a/README.md b/README.md index 5214408e6..7d27c4615 100644 --- a/README.md +++ b/README.md @@ -17,7 +17,9 @@ ATM模块主要提供如下功能: - 提供基于tokenID的Accestoken信息查询,应用可以根据tokenID查询自身的APL等级等信息; ## 缩略词 - +- AT:Access Toke, 访问凭据 +- AACL:API Access Control List, 权限访问控制列表 +- APL:API Ability Privilege Level, 权限访问控制列表 ## 目录 -- Gitee