兰宝车间质量管理系统
blame | 历史 | 补丁 | 提交 | 提交对比 | 忽略空白
疯狂的狮子Li
2023-08-02 359ec45b055c86907368228bbf5891dc80b68c71 
 ruoyi-common/ruoyi-common-security/src/main/java/org/dromara/common/security/config/SecurityConfig.java


@@ -48,15 +48,14 @@


                    // 检查是否登录 是否有token


                    StpUtil.checkLogin();




                    // 检查 header 里的 clientId 与 token 里的是否一致


                    // 检查 header 与 param 里的 clientid 与 token 里的是否一致


                    String headerCid = ServletUtils.getRequest().getHeader(LoginHelper.CLIENT_KEY);


                    String paramCid = ServletUtils.getParameter(LoginHelper.CLIENT_KEY);


                    String clientId = StpUtil.getExtra(LoginHelper.CLIENT_KEY).toString();


                    if (!StringUtils.equals(headerCid, clientId)) {


                    if (!StringUtils.equalsAny(clientId, headerCid, paramCid)) {


                        // token 无效


                        throw NotLoginException.newInstance(


                            StpUtil.getLoginType(),


                            NotLoginException.INVALID_TOKEN,


                            NotLoginException.NOT_TOKEN_MESSAGE,


                        throw NotLoginException.newInstance(StpUtil.getLoginType(),


                            "-100", "客户端ID与Token不匹配",


                            StpUtil.getTokenValue());


                    }