Skip to content

S
smart_gov_platform
Commit 43e8fa08 authored by 赵啸非's avatar 赵啸非
Browse files
Options

提交配置校验

parent 810159b5
Show whitespace changes
Inline Side-by-side
Showing with 0 additions and 31 deletions
portal-manager/src/main/java/com/mortals/xhx/base/framework/interceptor/AuthUserInterceptor.java
View file @ 43e8fa08
...@@ -67,37 +67,6 @@ public class AuthUserInterceptor extends BaseInterceptor { ...@@ -67,37 +67,6 @@ public class AuthUserInterceptor extends BaseInterceptor {
public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler) public boolean preHandle(HttpServletRequest request, HttpServletResponse response, Object handler)
throws Exception { throws Exception {
String referer = request.getHeader("Referer");
if (!ObjectUtils.isEmpty(referer)) {
//校验host即可
URI host = URLUtil.getHost(new URL(referer));
referer = host.getHost();
List<String> trustReferers = StrUtil.split(trustedReferer, ",");
if (!ObjectUtils.isEmpty(trustReferers)) {
if (!trustReferers.contains(referer)) {
response.setStatus(HttpStatus.HTTP_BAD_REQUEST);
return false;
}
}
}
//校验Origin
referer = request.getHeader("Origin");
if (!ObjectUtils.isEmpty(referer)) {
//校验host即可
URI host = URLUtil.getHost(new URL(referer));
referer = host.getHost();
List<String> trustReferers = StrUtil.split(trustedReferer, ",");
if (!ObjectUtils.isEmpty(trustReferers)) {
if (!trustReferers.contains(referer)) {
response.setStatus(HttpStatus.HTTP_BAD_REQUEST);
return false;
}
}
}
//Origin
JSONObject ret = new JSONObject(); JSONObject ret = new JSONObject();
try { try {
if (handler instanceof HandlerMethod) { if (handler instanceof HandlerMethod) {
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment