tobacco-back.git

parent: 33574d52 | 补丁 | 提交 | show whitespace

xuefei

2023-04-28 5d9101e8627bca8e1ec25739777bfc2bdc8c104e

测试漏洞修复

4个文件已修改

1个文件已添加

	xboot-admin/src/main/java/cn/exrick/xboot/XbootApplication.java	2 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	xboot-admin/src/main/resources/application.yml	14 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	xboot-core/src/main/java/cn/exrick/xboot/core/common/exception/GlobalExceptionHandler.java	22 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	xboot-core/src/main/java/cn/exrick/xboot/core/config/security/permission/CorsFilter.java	2 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史
	xboot-core/src/main/java/cn/exrick/xboot/core/entity/User.java	2 ●●●●● 补丁 \| 查看 \| 原始文档 \| blame \| 历史

 xboot-admin/src/main/java/cn/exrick/xboot/XbootApplication.java

@@ -21,7 +21,7 @@
// 启用自带定时任务
@EnableScheduling
// 启用Admin监控
@EnableAdminServer
//@EnableAdminServer
public class XbootApplication {

    public static void main(String[] args) {

 xboot-admin/src/main/resources/application.yml

@@ -27,7 +27,7 @@
    username: root
    # Jasypt加密 可到common-utils中找到JasyptUtil加解密工具类生成加密结果 格式为ENC(加密结果) 以下解密结果为123456
    #password: wanghaojie
    password: 123456
    password: rootroot
    type: com.alibaba.druid.pool.DruidDataSource
    driverClassName: com.mysql.jdbc.Driver
    # Druid StatViewServlet配置
@@ -39,7 +39,7 @@
        # 允许清空统计数据
        reset-enable: true
        login-username: root
        login-password: ENC(PYVnAYh+j5C3jkMV1d+myj6JzDaUk7pcfTWUaYsvQdEVkuvIVf7Y0mOU9XkffxT8)
        login-password: boyingabcd12221!
        # IP白名单 多个逗号分隔
        allow:
        # IP黑名单
@@ -297,11 +297,11 @@
    - /hk/**
    - /xboot/wx/**
    - /index.html
    - /xboot/pcStatistic/**
    - /xboot/pcStatistic2/**
    - /xboot/pcStatistic3/**
    - /xboot/area/getAll
    - /xboot/areaSection/getAll2
#    - /xboot/pcStatistic/**
#    - /xboot/pcStatistic2/**
#    - /xboot/pcStatistic3/**
#    - /xboot/area/getAll
#    - /xboot/areaSection/getAll2
    - /xboot/message/**
    - /xboot/updateApp/**
    - /xboot/fingerprint/getUserByCode

 xboot-core/src/main/java/cn/exrick/xboot/core/common/exception/GlobalExceptionHandler.java

New file
@@ -0,0 +1,22 @@
package cn.exrick.xboot.core.common.exception;

import cn.exrick.xboot.core.common.utils.ResultUtil;
import cn.exrick.xboot.core.common.vo.Result;
import org.springframework.web.bind.annotation.ControllerAdvice;
import org.springframework.web.bind.annotation.ExceptionHandler;
import org.springframework.web.bind.annotation.ResponseBody;

/**
 * @author xfei
 * @date 2023/4/26 15:32
 */
@ControllerAdvice
public class GlobalExceptionHandler {
    //指定出现什么异常执行这个方法
    @ExceptionHandler(Exception.class)
    @ResponseBody //为了返回数据
    public Result error(Exception e) {
        e.printStackTrace();
        return ResultUtil.error(500,"系统异常请联系管理员！");
    }
}

 xboot-core/src/main/java/cn/exrick/xboot/core/config/security/permission/CorsFilter.java

@@ -12,7 +12,7 @@
 * @author jitwxs
 * @since 2018/10/16 20:53
 */
@Component
//@Component
public class CorsFilter implements Filter {
    @Override
    public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {

 xboot-core/src/main/java/cn/exrick/xboot/core/entity/User.java

@@ -8,6 +8,7 @@
import com.baomidou.mybatisplus.annotation.TableField;
import com.baomidou.mybatisplus.annotation.TableName;
import com.fasterxml.jackson.annotation.JsonFormat;
import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
import io.swagger.annotations.ApiModel;
import io.swagger.annotations.ApiModelProperty;
import lombok.Data;
@@ -38,6 +39,7 @@
@Table(name = "t_user")
@TableName("t_user")
@ApiModel(value = "用户")
@JsonIgnoreProperties(value = {"password"})
public class User extends XbootBaseEntity {

    private static final long serialVersionUID = 1L;

			@@ -21,7 +21,7 @@
			// 启用自带定时任务
			@EnableScheduling
			// 启用Admin监控
			@EnableAdminServer
			//@EnableAdminServer
			public class XbootApplication {

			public static void main(String[] args) {

			@@ -27,7 +27,7 @@
			username: root
			# Jasypt加密可到common-utils中找到JasyptUtil加解密工具类生成加密结果格式为ENC(加密结果) 以下解密结果为123456
			#password: wanghaojie
			password: 123456
			password: rootroot
			type: com.alibaba.druid.pool.DruidDataSource
			driverClassName: com.mysql.jdbc.Driver
			# Druid StatViewServlet配置
			@@ -39,7 +39,7 @@
			# 允许清空统计数据
			reset-enable: true
			login-username: root
			login-password: ENC(PYVnAYh+j5C3jkMV1d+myj6JzDaUk7pcfTWUaYsvQdEVkuvIVf7Y0mOU9XkffxT8)
			login-password: boyingabcd12221!
			# IP白名单多个逗号分隔
			allow:
			# IP黑名单
			@@ -297,11 +297,11 @@
			- /hk/**
			- /xboot/wx/**
			- /index.html
			- /xboot/pcStatistic/**
			- /xboot/pcStatistic2/**
			- /xboot/pcStatistic3/**
			- /xboot/area/getAll
			- /xboot/areaSection/getAll2
			# - /xboot/pcStatistic/**
			# - /xboot/pcStatistic2/**
			# - /xboot/pcStatistic3/**
			# - /xboot/area/getAll
			# - /xboot/areaSection/getAll2
			- /xboot/message/**
			- /xboot/updateApp/**
			- /xboot/fingerprint/getUserByCode

New file
			@@ -0,0 +1,22 @@
			package cn.exrick.xboot.core.common.exception;

			import cn.exrick.xboot.core.common.utils.ResultUtil;
			import cn.exrick.xboot.core.common.vo.Result;
			import org.springframework.web.bind.annotation.ControllerAdvice;
			import org.springframework.web.bind.annotation.ExceptionHandler;
			import org.springframework.web.bind.annotation.ResponseBody;

			/**
			* @author xfei
			* @date 2023/4/26 15:32
			*/
			@ControllerAdvice
			public class GlobalExceptionHandler {
			//指定出现什么异常执行这个方法
			@ExceptionHandler(Exception.class)
			@ResponseBody //为了返回数据
			public Result error(Exception e) {
			e.printStackTrace();
			return ResultUtil.error(500,"系统异常请联系管理员！");
			}
			}

			@@ -12,7 +12,7 @@
			* @author jitwxs
			* @since 2018/10/16 20:53
			*/
			@Component
			//@Component
			public class CorsFilter implements Filter {
			@Override
			public void doFilter(ServletRequest req, ServletResponse res, FilterChain chain) throws IOException, ServletException {

			@@ -8,6 +8,7 @@
			import com.baomidou.mybatisplus.annotation.TableField;
			import com.baomidou.mybatisplus.annotation.TableName;
			import com.fasterxml.jackson.annotation.JsonFormat;
			import com.fasterxml.jackson.annotation.JsonIgnoreProperties;
			import io.swagger.annotations.ApiModel;
			import io.swagger.annotations.ApiModelProperty;
			import lombok.Data;
			@@ -38,6 +39,7 @@
			@Table(name = "t_user")
			@TableName("t_user")
			@ApiModel(value = "用户")
			@JsonIgnoreProperties(value = {"password"})
			public class User extends XbootBaseEntity {

			private static final long serialVersionUID = 1L;