Design of access control system of WFST

Nowadays, with the increase in the scale of astronomical equipment, the complexity of device structures, and the diversification of observational demands, the autonomous control of astronomical telescopes through computers and networks has become increasingly crucial. However, as computer networks and software become more deeply integrated and the overall system maintenance complexity rises, the risk of malicious network attacks and unauthorized user operations on astronomical observation control systems continues to escalate. The Mozi Wide Field Survey Telescope, as the most powerful optical transient survey device in the Northern Hemisphere, places great importance on access and permission management within its observation control system. We have developed dynamic identity authentication based on JSON Web Tokens and implemented role-based access permission management using the RBAC model to enhance the flexibility and security of identity authentication and permission management in the observation control system, effectively reducing the risk of unauthorized access and erroneous operations by users.