研发图纸管理
blame | 历史 | 补丁 | 提交 | 提交对比 | ignore whitespace
whyclxw
2025-03-06 eb33c60306f707ec7b30a048388e4de702ca2f15 
 src/main/java/com/whyc/filter/AccessFilter.java


@@ -2,7 +2,7 @@




import com.whyc.constant.UserOperation;


import com.whyc.constant.YamlProperties;


import com.whyc.pojo.UserInf;


import com.whyc.pojo.DocUser;


import com.whyc.util.ActionUtil;


import com.whyc.util.CommonUtil;




@@ -99,9 +99,9 @@


            }


        }




        if(YamlProperties.profileType.equals("prod")) {


        if(YamlProperties.profileType.equals("prod1")) {


            //用户需要登录


            UserInf user = (UserInf) request.getSession().getAttribute("user");


            DocUser user = (DocUser) request.getSession().getAttribute("user");


            //无需登录可以调用接口放行


            if (!requestURI.contains(".") && !servletPath.equals("/") &&


                    (!


@@ -149,7 +149,7 @@


                if (user == null) {


                    //越权访问


                    //CommonUtil.record(0, UserOperation.TYPE_UNAUTHORIZED_ACCESS.getType(), "越权访问", "越权访问接口:" + requestURI);


                    CommonUtil.record2(request, 0, UserOperation.TYPE_UNAUTHORIZED_ACCESS.getType(), "越权访问", "越权访问接口:" + requestURI);


                    CommonUtil.record2(request, 0,"", UserOperation.TYPE_UNAUTHORIZED_ACCESS.getType(), "越权访问", "越权访问接口:" + requestURI);


                    response.setStatus(401);


                    response.setContentType("text/html;charset=utf-8");


                    response.getWriter().write("非法请求,身份未验证");