bonus
/
cqdevicemgt
1
0
Fork 0
Code Issues Pull Requests Packages Projects Releases Wiki Activity

漏洞修复

This commit is contained in:
mashuai 2025-04-29 10:36:15 +08:00
parent 724ad87df9
commit 4404af2fb7
1 changed files with 14 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

14
sgzb-modules/sgzb-gen/src/main/java/com/bonus/sgzb/gen/controller/GenController.java
View File

@ -6,6 +6,7 @@ import java.util.List;
import java.util.Map; import java.util.Map;
import javax.servlet.http.HttpServletResponse; import javax.servlet.http.HttpServletResponse;
import com.bonus.sgzb.common.security.utils.SecurityUtils;
import com.bonus.sgzb.gen.domain.GenTable; import com.bonus.sgzb.gen.domain.GenTable;
import com.bonus.sgzb.gen.domain.GenTableColumn; import com.bonus.sgzb.gen.domain.GenTableColumn;
import org.apache.commons.io.IOUtils; import org.apache.commons.io.IOUtils;
@ -88,9 +89,14 @@ public class GenController extends BaseController
/** /**
* 查询数据表字段列表 * 查询数据表字段列表
*/ */
@RequiresPermissions("tool:gen:query")
@GetMapping(value = "/column/{tableId}") @GetMapping(value = "/column/{tableId}")
public TableDataInfo columnList(Long tableId) public TableDataInfo columnList(Long tableId)
{ {
// 只有管理员才能操作
if (!isAdmin()) {
throw new RuntimeException("没有权限操作");
}
TableDataInfo dataInfo = new TableDataInfo(); TableDataInfo dataInfo = new TableDataInfo();
List<GenTableColumn> list = genTableColumnService.selectGenTableColumnListByTableId(tableId); List<GenTableColumn> list = genTableColumnService.selectGenTableColumnListByTableId(tableId);
dataInfo.setRows(list); dataInfo.setRows(list);
@ -98,6 +104,14 @@ public class GenController extends BaseController
return dataInfo; return dataInfo;
} }
/**
* 判断是否管理员
* @return
*/
private boolean isAdmin() {
return SecurityUtils.isAdmin(SecurityUtils.getUserId());
}
/** /**
* 导入表结构保存 * 导入表结构保存
*/ */