高頓網(wǎng)校友情提示,*7西雙版納傣族自治州會計繼續(xù)教育網(wǎng)上總結(jié)信息Excel2007新知-Excel服務(wù)VIII——控制和保護(hù)數(shù)據(jù)表等內(nèi)容公布如下:  Excel Services part 8: Controlling and protecting spreadsheets
  Excel服務(wù)第8部分:控制和保護(hù)數(shù)據(jù)表
  To this point in my discussion of Excel Services, I have written primarily about the user-facing part of Excel Services - all the things customers can do with Excel Web Access and Excel Web Services in order to execute and interact with workbooks on the server.  In the next two posts, I plan to cover some of the security aspects of Excel - how customers who deploy Excel Services can “lock down” and protect key spreadsheets.
  在我以前的有關(guān)Excel服務(wù)的論述中,我主要介紹過Excel服務(wù)的用戶界面部分——用戶可以利用Excel Web Access和Excel Web服務(wù)完成這些操作,使得數(shù)據(jù)表在服務(wù)器上與工作簿相互結(jié)合。在下兩篇文章中,我打算介紹一些Excel安全方面的知識——配置Excel服務(wù)的用戶怎樣才能“鎖定”和保護(hù)關(guān)鍵數(shù)據(jù)表。
  In my overview of Excel Services, I mentioned that a request that we frequently hear from customers is the ability to limit access to spreadsheets either for regulatory and audit concerns or to protect proprietary information in spreadsheets.  To address this requirement, one of the main things that we've done (in addition to allowing users to execute and view spreadsheets on the server) is extended the Windows SharePoint Services (SharePoint) architecture with a new “right”, which we call a the “View Item” right.
  在我的“Excel服務(wù)概覽”這篇文章里,我提到過,用戶經(jīng)常給我們提出這樣一個要求,要求我們提供限制訪問數(shù)據(jù)表的功能,例如:管理和審核利害關(guān)系或者保護(hù)專有信息。為了達(dá)到這個要求,我們所做的主要事情就是給Windows SharePoint服務(wù)體系增加一個“權(quán)限”(除了允許用戶在服務(wù)器上訪問和查看數(shù)據(jù)表),我們把它叫做“查看項目”權(quán)限。
  Before I get into exactly what the View Item right is, let me give a bit of background on what SharePoint is, and how it relates to Excel Services.  As I've mentioned in previous posts, Excel Services is built as part of the SharePoint products and technologies platform.  For the context of this conversation on the View Item right, consider SharePoint as a document store on the server – users can save and version files, administrators can control access permissions, etc., all via any browser  (Note, SharePoint does *a lot* more than this - in addition to being a document store, SharePoint provides many more features which you can read about here).
  在我還沒有深入介紹什么是查看項目權(quán)限之前,讓我先簡單的介紹一下什么是SharePoint,它是怎樣和Excel服務(wù)發(fā)生聯(lián)系的。正如我在前面的文章中提到,Excel服務(wù)是基于SharePoint產(chǎn)品和技術(shù)平臺的一部分。為了便于理解查看項目權(quán)限,在這里我們把SharePoint看作服務(wù)器上的一個文檔庫——用戶可以保存和修改文件,管理員可以控制訪問權(quán)限等等,所有這些通過任何一個瀏覽器都能實現(xiàn)(注:SharePoint還可以做更多的事情——除了作為一個文檔庫之外,SharePoint還提供更多的功能,你可以看這里)
  Currently, SharePoint administrators can give users “Reader” rights (look at content), “Contributor” rights (look at, change, and add to content), or “Administrator” rights (full control).  One way to think of this is similar to a regular file system and the file access rights that can be set (e.g. read only, read/write etc.)
  通常,SharePoint管理員可以給用戶“閱讀”權(quán)限(查看內(nèi)容),“投稿”權(quán)限(查看、修改和添加內(nèi)容),或者“管理”權(quán)限(完全控制)。咋一看這與正式的文件系統(tǒng)很相似,可以設(shè)置文件的訪問權(quán)限(例如只讀、讀/寫等等)。
  With the View Item right that we are adding, customers can lock down spreadsheets that have been published to SharePoint (this right is specific to SharePoint document libraries and does not work with workbooks stored in UNC shares or generic HTTP locations) such that users can open the spreadsheets using Excel Services, interact with the workbooks, and see the execution results, but can't download a copy of the spreadsheet, or access any areas that were not published as viewable on the server.  This hides any proprietary information contained within the book - specific formulas, the proprietary model, the external data connections, and hidden elements of the book - all of these things become inaccessible to users.
  由于查看項目權(quán)限的添加,用戶可以鎖定已經(jīng)發(fā)表到SharePoint的數(shù)據(jù)表(這個權(quán)限是SharePoint文檔庫特有的,它與存儲在UNC共享或者普通HTTP域的工作簿不同),這樣,用戶可以通過Excel服務(wù)打開數(shù)據(jù)表,與工作簿相互作用,可以看到執(zhí)行的結(jié)果,但是不能下載數(shù)據(jù)表的副本,并且不能訪問服務(wù)器上任何非可見區(qū)域。這里隱藏了文檔里的專有信息——特殊公式、專有模型、外部數(shù)據(jù)連接和文檔的隱藏單元——所有這些東西用戶都無法接觸。
  Let's look at some examples of how View Item can be used in an Excel Services solution.  Imagine a workbook that takes several inputs, and then calculates discount rates for a large retailer.  The discount rate for any specific distributor is dependant on many factors - what quantity of product is purchased, the time of year, and the number of previous transactions for a given distributor - and of course, this discount rate formula is carefully guarded by the retailer since it determines the profit made on each transaction.  With Excel Services, this retailer can now allow distributors View Item right to the workbook containing this sensitive model, without having to worry that they will actually be able to download or see the model.
  讓我們來看看查看項目在Excel服務(wù)中應(yīng)用的一些例子。假設(shè)某個工作簿里有若干錄入數(shù)據(jù),然后要為一個大零售商計算折扣率。無論哪個批發(fā)商的折扣率都是決定于很多因素——產(chǎn)品購買量、時間、既定批發(fā)商以前的交易量——當(dāng)然,零售商會小心的控制折扣率公式,因為它決定著每一筆交易所獲得的利潤。利用Excel服務(wù),零售商可以允許批發(fā)商擁有這個工作簿的查看項目權(quán)限,并限制敏感的模型,所以零售商不必?fù)?dān)心批發(fā)商能夠下載或看到模型。
  The View Item right affects how both Excel Web Access and the Excel Web Services allow access to a workbook.. Let's look at the specific elements that are affected:
  查看項目權(quán)限影響著Excel Web Access和Excel Web服務(wù)訪問工作簿的方式。讓我們來看看具體的影響因素:
  1. Which portions of the workbook can be accessed by a user:  When a user only has the View Item right, they can only see the portions of the workbook that have been marked as viewable on the server during the publish process.
  1、工作簿的哪個部分能被用戶訪問:當(dāng)該用戶只有查看項目權(quán)限時,那么他就只能看到工作簿的可見部分。
  View Item right prevents users from seeing ranges that were not marked as viewable during publish
  查看項目權(quán)限阻止用戶查看非可見區(qū)域
  2. Which portions of the workbook can be opened in Excel:  While users with the Reader right can always open the original workbook in Excel if they want to see the model/formulas/data connections/etc., users with the View Item right can only open a snapshot of the original workbook in Excel.  A snapshot is much like what you would get with a copy/paste values and formatting, so that the user can see the numbers, but none of the proprietary information behind those numbers (formulas, connections, etc.), since that information is not contained in the snapshot.  And, of course, they can only see the numbers for the portions of the workbook that were marked as visible on the server.
  2、工作簿的哪個部分能在Excel里打開:擁有閱讀權(quán)限的用戶,如果想要看到模型/公式/數(shù)據(jù)連接等等,他們可以在Excel中打開原工作簿;擁有查看項目權(quán)限的用戶在Excel中只能打開原工作簿的瞬態(tài)圖。瞬態(tài)圖就像復(fù)制/粘貼數(shù)值和格式得到的結(jié)果一樣,所以用戶只看到數(shù)字,而在這些數(shù)字后面并沒有專有信息(公式、連接等等),也就是說瞬態(tài)圖不包含這些信息。當(dāng)然,他們只能看到工作簿可見部分的數(shù)據(jù)。
  Workbook contains formulas and other proprietary information
  工作簿包含公式和其他專有信息
  Snapshot contains only the numerical values and formatting
  瞬態(tài)圖只包含數(shù)值和格式
  These examples focus on accessing the spreadsheet through the browsing using Excel Web Access (the browser).  Similarly, if an application accesses the spreadsheet through Excel Web Services, the View Item right is enforced.  For example, issuing a “GetRangeA1” call to a range that has not been marked as viewable will result in an exception, as will “GetWorkbook”.
  這些例子集中在通過Excel Web Access(瀏覽器)訪問數(shù)據(jù)表。同樣的,如果某個應(yīng)用程序通過Excel Web服務(wù)訪問數(shù)據(jù)表,那么查看項目權(quán)限是被強制執(zhí)行的。例如,發(fā)布一個“GetRangeAl”作為沒有標(biāo)記為可見的區(qū)域,那么就會導(dǎo)致出現(xiàn)異常,同樣也會發(fā)生在“GetWorkbook”上。
  That sums up how users can lock down spreadsheets to protect proprietary information/ensure everyone is looking at the latest sanctioned version using the new View Item right within SharePoint.  Next, more about some of the security functionality that we've built into Excel Services - how Excel Services decides whether or not to execute a workbook, how it connects to external data sources, and how it integrates with some of the other security features in SharePoint like versioning, IRM, and document approval.
  這篇文章概括了用戶怎樣鎖定數(shù)據(jù)表以保護(hù)專有信息/怎樣利用SharePoint里的查看項目權(quán)限保證每個人正在看的是*7的標(biāo)準(zhǔn)版本。下次,介紹一些Excel服務(wù)安全性的知識——Excel服務(wù)怎樣判斷是否運行工作簿,它怎樣連接外部數(shù)據(jù)源,它怎樣與SharePoint的其它安全特性(如版本、IRM、文檔證明)相結(jié)合。
     
  掃一掃微信,學(xué)習(xí)實務(wù)技巧
   
  高頓網(wǎng)校特別提醒:已經(jīng)報名2014年財會考試的考生可按照復(fù)習(xí)計劃有效進(jìn)行!另外,高頓網(wǎng)校2014年財會考試高清課程已經(jīng)開通,通過針對性地講解、訓(xùn)練、答疑、???,對學(xué)習(xí)過程進(jìn)行全程跟蹤、分析、指導(dǎo),可以幫助考生全面提升備考效果。