From 3c3a1a8f69c48b7ad776794886856c2c380e96d3 Mon Sep 17 00:00:00 2001
From: baoshiwei <baoshiwei@shlanbao.cn>
Date: 星期四, 14 八月 2025 16:07:46 +0800
Subject: [PATCH] 环保3D图片

---
 zhitan-admin/src/main/java/com/zhitan/web/controller/system/SysProfileController.java |    4 ++++
 1 files changed, 4 insertions(+), 0 deletions(-)

diff --git a/zhitan-admin/src/main/java/com/zhitan/web/controller/system/SysProfileController.java b/zhitan-admin/src/main/java/com/zhitan/web/controller/system/SysProfileController.java
index 87baa9d..819b3b1 100644
--- a/zhitan-admin/src/main/java/com/zhitan/web/controller/system/SysProfileController.java
+++ b/zhitan-admin/src/main/java/com/zhitan/web/controller/system/SysProfileController.java
@@ -1,5 +1,6 @@
 package com.zhitan.web.controller.system;
 
+import org.springframework.security.access.prepost.PreAuthorize;
 import org.springframework.web.bind.annotation.GetMapping;
 import org.springframework.web.bind.annotation.PostMapping;
 import org.springframework.web.bind.annotation.PutMapping;
@@ -43,6 +44,7 @@
      * 涓汉淇℃伅
      */
     @GetMapping
+    @PreAuthorize("@ss.hasPermi('system:user:message')")
     public AjaxResult profile()
     {
         LoginUser loginUser = getLoginUser();
@@ -57,6 +59,7 @@
      * 淇敼鐢ㄦ埛
      */
     @Log(title = "涓汉淇℃伅", businessType = BusinessType.UPDATE)
+    @PreAuthorize("@ss.hasPermi('system:user:edit')")
     @PutMapping
     public AjaxResult updateProfile(@RequestBody SysUser user)
     {
@@ -87,6 +90,7 @@
      * 閲嶇疆瀵嗙爜
      */
     @Log(title = "涓汉淇℃伅", businessType = BusinessType.UPDATE)
+    @PreAuthorize("@ss.hasPermi('system:user:edit')")
     @PutMapping("/updatePwd")
     public AjaxResult updatePwd(String oldPassword, String newPassword)
     {

--
Gitblit v1.9.3