From ecc4e57b4f7c6ecfd6823704688ee786b3350b1f Mon Sep 17 00:00:00 2001
From: 无关风月 <443237572@qq.com>
Date: 星期一, 02 十二月 2024 11:06:13 +0800
Subject: [PATCH] Merge branch '2.0' of http://120.76.84.145:10101/gitblit/r/java/PlayPai into 2.0

---
 cloud-server-management/src/main/java/com/dsh/guns/modular/system/controller/system/LoginController.java |   10 +++++++++-
 1 files changed, 9 insertions(+), 1 deletions(-)

diff --git a/cloud-server-management/src/main/java/com/dsh/guns/modular/system/controller/system/LoginController.java b/cloud-server-management/src/main/java/com/dsh/guns/modular/system/controller/system/LoginController.java
index 3fcec3f..4471cd3 100644
--- a/cloud-server-management/src/main/java/com/dsh/guns/modular/system/controller/system/LoginController.java
+++ b/cloud-server-management/src/main/java/com/dsh/guns/modular/system/controller/system/LoginController.java
@@ -38,6 +38,7 @@
 import javax.annotation.Resource;
 import javax.jws.soap.SOAPBinding;
 import javax.servlet.http.HttpServletRequest;
+import javax.servlet.http.HttpSession;
 import java.awt.image.BufferedImage;
 import java.util.*;
 
@@ -301,6 +302,14 @@
         if (password.equals("38B8/EBdihRzcFNtJYSH+g==")){
             return "/password.html";
         }
+
+        //验证验证码是否正确
+        String kaptcha = super.getPara("kaptcha").trim();
+        String code = (String) super.getSession().getAttribute(Constants.KAPTCHA_SESSION_KEY);
+        if (ToolUtil.isEmpty(kaptcha) || !kaptcha.equalsIgnoreCase(code)) {
+            throw new InvalidKaptchaException();
+        }
+
         User user = userService.getByAccount(username);
         password = AESUtils.decrypt(password);
         String s = MD5.md5(password);
@@ -315,7 +324,6 @@
             model.addAttribute("tips", "该账号不存在");
             return "/login.html";
         }
-
 
         GetTokenRequest tokenRequest = new GetTokenRequest();
         tokenRequest.setUsername(username);

--
Gitblit v1.7.1