Research of Access Control Based on Form Component in Workflow System

The access control model in a workflow system is set up to protect process related data not being accessed or modified by unauthorized users. In a business process some of the activity nodes are logically related to each other and the data sharing among them leads to resemblance in page presenting of the forms bounded to those nodes. Traditionally different form need to be defined for each activity node, as a result it brings in code redundancy and makes the whole system hard to maintain. With regard to the problems mentioned above, an access controlling model based on form component is proposed, which first divides form into components and then perform authorization over components by assigning specific role to the participant on activity node. The access control in small granularity makes it possible for one single form being shared by multiple nodes, thus improving the reusability of form page and flexibility of the whole system.