bug

luoyisheng

2025-01-17 b220dd82dfa644d7bc19670766129f3001a09e6b

bug

 medicalWaste-admin/src/main/java/com/sinata/web/controller/applet/AppLoginController.java

@@ -12,6 +12,7 @@
import com.sinata.common.core.domain.entity.SysUser;
import com.sinata.common.core.domain.model.LoginBody;
import com.sinata.common.core.domain.model.LoginUser;
import com.sinata.common.core.redis.RedisCache;
import com.sinata.common.utils.SecurityUtils;
import com.sinata.common.utils.StringUtils;
import com.sinata.framework.web.service.SysLoginService;
@@ -31,6 +32,7 @@
import io.swagger.annotations.Api;
import io.swagger.annotations.ApiOperation;
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.data.redis.core.RedisTemplate;
import org.springframework.util.CollectionUtils;
import org.springframework.web.bind.annotation.*;

@@ -72,6 +74,8 @@
    private AliSmsService aliSmsService;
    @Resource
    private ISysUserService userService;
    @Autowired
    private RedisCache redisCache;


    @PostMapping("/getCode")
@@ -79,11 +83,29 @@
    public AjaxResult getCode(String phone)
    {
        Random random = new Random();

        List<SysUser> list = userService.lambdaQuery().eq(SysUser::getPhonenumber, phone).list();
        if (list.isEmpty()){
            return AjaxResult.error("当前手机号没有对应用户，请联系管理员");
        }
        int i = 100000 + random.nextInt(900000);
        aliSmsService.sendLoginCode(phone, String.valueOf(i));
        redisCache.setCacheObject(String.valueOf(phone), String.valueOf(i));
        return AjaxResult.success();
    }


    @PostMapping("/set/getCode")
    @ApiOperation("获取验证码")
    public AjaxResult setgetCode(String phone)
    {
        Random random = new Random();
        int i = 100000 + random.nextInt(900000);
        aliSmsService.sendLoginCode(phone, String.valueOf(i));
        redisCache.setCacheObject(String.valueOf(phone), String.valueOf(i));
        return AjaxResult.success();
    }


    @Resource
    private WeChatUtil weChatUtil;

@@ -132,7 +154,10 @@
//        }

        List<SysMenu> menus = roleService.roleInfoFromUserId(loginUser.getUserId());

        String string = redisCache.getCacheObject(loginBody.getUsername()).toString();
        if (!loginBody.getCode().equals(string)){
            return AjaxResult.error("验证码错误，请重试");
        }
//        ajax.put("menus", menus);
        ajax.put("userInfo", loginUser);
        return ajax;

 medicalWaste-framework/src/main/java/com/sinata/framework/config/SecurityConfig.java

@@ -111,7 +111,7 @@
            .authorizeHttpRequests((requests) -> {
                permitAllUrl.getUrls().forEach(url -> requests.antMatchers(url).permitAll());
                // 对于登录login 注册register 验证码captchaImage 允许匿名访问
                requests.antMatchers("/backend/login","/applet/mwApplication/set","/applet/file/upload","/applet/sysDepartment/departmentSearchTree","/applet/getCode","/applet/login", "/register", "/captchaImage").permitAll()
                requests.antMatchers("/backend/login","/applet/mwApplication/set","/applet/file/upload","/applet/sysDepartment/departmentSearchTree","/applet/set/getCode","/applet/getCode","/applet/login", "/register", "/captchaImage").permitAll()
                    // 静态资源，可匿名访问
                        .antMatchers(HttpMethod.GET, "/", "/msg", "/**/*.html", "/**/*.css", "/**/*.js", "/profile/**").permitAll()
                    .antMatchers("/swagger-ui.html", "/swagger-resources/**", "/webjars/**", "/*/api-docs", "/druid/**").permitAll()