图7：可以将RAM的访问控制配置为，允许同一个用户在多个社区中扮演拥有各不相同的权限和约束的多个角色。

Figure 7: Access control for RAM can be configured to allow the same user to have multiple roles across multiple communities with varying permissions and constraints.

youdao

授权约束是基于角色的访问控制模型中一个非常重要的部分。

Authorization constraint is an important part in role-based access control models.

youdao

在用户分配和权限分配中引入时间约束，表示和实现了更为丰富的访问控制语义。

Temporal constraints are introduced in the user assignment and permission assignment to express and realize more powerful access control semantics.

youdao