INTERFAOL O‘QUV PLATFORMADA FOYDALANUVCHI AUTENTIFIKATSIYASI VA RBAC MEXANIZMINI JORIY ETISH

Authors

  • Masharipov Dilmurod Atanazarovich Osiyo xalqaro universiteti, Ijtimoiy Fanlar va texnologiyalar fakulteti, magistratura talabasi, Urgench, Uzbekistan masharipovdilmurod52@gmail.com

Abstract

Ushbu tezisda interfaol o‘quv platformalarida foydalanuvchilarni autentifikatsiya qilish va rollarga asoslangan kirish nazorati (RBAC)ni joriy etishning texnik jihatlari IMRaD strukturasi asosida ko‘rib chiqiladi. Platforma arxitekturasi frontend, backend va ma’lumotlar bazasi qatlamlaridan iborat bo‘lib, ularda OpenID Connect, JWT (JSON Web Token) va RBAC modeli integratsiyalashgan. Frontend foydalanuvchining ro‘yxatdan o‘tishi, tizimga kirishi va roli kodlangan JWT tokenni qabul qilishini ta’minlaydi, backend esa parolni xeshlash, ikki bosqichli autentifikatsiya (2FA) va token generatsiyasi uchun mas’uldir. Ma’lumotlar bazasida Users, Roles, Permissions, User_Roles va Role_Permissions jadvallari orqali “Admin”, “Teacher”, “Student” va “Guest” rollari uchun vakolatlar formal tarzda boshqariladi. Taklif etilgan yechim “least privilege” tamoyilini ta’minlab, himoyalangan API endpointlar uchun ruxsatlarni tekshirish hamda audit imkoniyatlari orqali interfaol ta’lim platformalarida axborot xavfsizligi va boshqaruv samaradorligini oshiradi.

References

1. INTERFAOL PLATFORMADA FOYDALANUVCHI AUTENTIFIKATSIYASI VA ROLLARGA ASOSLANGAN KIRISH NAZORATI. ILM-FAN XABARNOMASI Volume 11, issue 1, Dekabr 2025

2. Hu, V. C., Ferraiolo, D. F., & Kuhn, D. R. (2017). Guide to Attribute Based Access Control (ABAC): Definition and Considerations. NIST Special Publication 800-162.

3. Hu, V. C., Ferraiolo, D., Kuhn, R., Schnitzer, A., Sandlin, K., Miller, R., & Scarfone, K. (2014). Assessment of Access Control Systems. NIST Special Publication 800-192.

4. OpenID Foundation. (2022). OpenID Connect Core 1.0 Specification. Available at: https://openid.net/specs/openid-connect-core-1_0.html

5. Jones, M., Bradley, J., & Sakimura, N. (2015). JSON Web Token (JWT). IETF RFC 7519.

6. Jones, M., & Hardt, D. (2012). The OAuth 2.0 Authorization Framework. IETF RFC 6749.

7. OASIS Standard. (2013). eXtensible Access Control Markup Language (XACML) Version 3.0. Available at: https://docs.oasis-open.org/xacml/3.0/

8. Stallings, W. (2018). Cryptography and Network Security: Principles and Practice. Pearson.

Downloads

Published

2026-02-07

How to Cite

Masharipov Dilmurod Atanazarovich. (2026). INTERFAOL O‘QUV PLATFORMADA FOYDALANUVCHI AUTENTIFIKATSIYASI VA RBAC MEXANIZMINI JORIY ETISH. Recent Scientific Discoveries and Methodological Research, 3(2), 38–41. Retrieved from https://incop.org/index.php/re/article/view/3273

Issue

Vol. 3 No. 2 (2026): Recent scientific discoveries and methodological research

Section

Articles