三方测试漏洞安全解决

2024-07-03 09:39:47 +08:00 · 2024-07-03 09:39:47 +08:00 · 14ec0d76d8
parent 9a143e3180
commit 14ec0d76d8
1 changed files with 9 additions and 10 deletions
--- a/LargeScreenServer(1)/large-admin/src/main/java/com/bonus/web/controller/system/SysLoginController.java
+++ b/LargeScreenServer(1)/large-admin/src/main/java/com/bonus/web/controller/system/SysLoginController.java
@ -250,7 +250,7 @@ public class SysLoginController
    @GetMapping("getShowRouters")
    public AjaxResult getShowRouters()
    {
-       // getMenuList("152F220513052722E0630417321BE312");
+        // getMenuList("152F220513052722E0630417321BE312");
        String roleId ="";
        if("3".equals(SecurityUtils.getUserId().toString())){
            roleId="100";
@ -261,8 +261,8 @@ public class SysLoginController
        List<IscMenu> menus = menuService.selectShowMenuTreeByUserId(roleId);
        return AjaxResult.success(menus);
    }
-    @ApiOperation(value = "根据统一权限获取人员基本信息")
-    @GetMapping("getUserTicket1")
+    @ApiOperation(value = "根据统一权限获取人员基本信息11111")
+    @PostMapping("getUserTicket1")
    public AjaxResult getUserTicket(String ticket, String model, String accessToken) {
        System.out.println("--------------------------------------------------------------------------------");
        AjaxResult ajax = AjaxResult.success();
@ -289,7 +289,6 @@ public class SysLoginController
                    cd = cd.replace("<cas:user>", "");
                }
                user = JSONObject.parseObject(cd, IscUserInfo.class);
-                System.out.println("+++++++++++++++++++++++++++++++"+user.toString());
                // 用户校验
                SysUser sysuser = new  SysUser();
                //sysuser.setMenus(getMenuList(user.getIscUserId()));
@ -300,7 +299,7 @@ public class SysLoginController
                if (userService.ISCcheckUserNameUnique(sysuser)){
                    sysuser.setCreateBy(user.getName());
                    sysuser.setPassword(SecurityUtils.encryptPassword("Bonus@1234！"));
-                     userService.insertUser(sysuser);
+                    userService.insertUser(sysuser);
                }
                // 资源获取接口
                //    Map<String, Object> resultMap = tokenService.createToken(loginUser);
@ -320,13 +319,13 @@ public class SysLoginController
        }
        return ajax;
    }
-    @GetMapping("getUserTicket")
+    @PostMapping("getUserTicket")
    public AjaxResult getUserTicket1(String ticket, String model, String accessToken) {
        System.out.println("--------------------------------------------------------------------------------");
        System.out.println("走了getUserTicket当前登录的人员信息> ");
        AjaxResult ajax = AjaxResult.success();
        ajax.put(Constants.FALSETOKEN, "1");
-                // 资源获取接口
+        // 资源获取接口
        SysUser sysuser = new  SysUser();
        sysuser.setIscUserId("sdsdfsf3434324234");
        sysuser.setUserName("李振华");
@ -392,8 +391,8 @@ public class SysLoginController
 //            com.alibaba.fastjson2.JSONObject obj = com.alibaba.fastjson2.JSONObject.parseObject(data);
 //            com.alibaba.fastjson2.JSONArray jsonArray=obj.getJSONArray("data");
 //            List<IscMenu> list= jsonArray.toList(IscMenu.class);
-     //       System.out.println("list 菜单数据----------->"+list);
-         //   getChilderList(menuList,list);
+            //       System.out.println("list 菜单数据----------->"+list);
+            //   getChilderList(menuList,list);
        }catch (Exception e){
            e.printStackTrace();
        }
@ -417,7 +416,7 @@ public class SysLoginController
                }
            }
        }catch (Exception e){
-         e.toString();
+            e.toString();
        }
    }
    private static void getChilderList2(SysMenu sysMenu,List<IscMenu> iscLis){