摘要 |
PROBLEM TO BE SOLVED: To attain access control to an application with reflection of a user and the configuration of organization by preparing a step where the access control is executed, based on the user organization information, by making reference to the access management information and in consideration of the assignment/organization configuration concerning the user. SOLUTION: A user 5 accesses an application server 3 with addition of an authentication form 8 to use the service of the server 3. The server 3 authenticates the access authorization of the user 5, based on the form 8, and by making reference to an access management table 4 and then provides its service to the user 5 only when his access authorization is accepted. In such a constitution, the access control is attained to an application where the user 5 and the configuration of organization are reflected by means of the table 4 where an access authorization rule is defined and then the application load can be reduced without using an exclusive access server nor a DB which manages the total configuration of organization. |