修复安全漏洞。优化代码

2021-11-11 18:15:21 +08:00
parent 9fd75c65e1
commit 6f13218564
34 changed files with 351 additions and 126 deletions
--- a/manager-api/src/main/java/cn/lili/controller/member/MemberManagerController.java
+++ b/manager-api/src/main/java/cn/lili/controller/member/MemberManagerController.java
@@ -7,6 +7,7 @@ import cn.lili.modules.member.entity.dos.Member;
 import cn.lili.modules.member.entity.dto.ManagerMemberEditDTO;
 import cn.lili.modules.member.entity.dto.MemberAddDTO;
 import cn.lili.modules.member.entity.vo.MemberSearchVO;
+import cn.lili.modules.member.entity.vo.MemberVO;
 import cn.lili.modules.member.service.MemberService;
 import cn.lili.modules.system.aspect.annotation.DemoSite;
 import com.baomidou.mybatisplus.core.metadata.IPage;
@@ -35,7 +36,7 @@ public class MemberManagerController {

    @ApiOperation(value = "会员分页列表")
    @GetMapping
-    public ResultMessage<IPage<Member>> getByPage(MemberSearchVO memberSearchVO, PageVO page) {
+    public ResultMessage<IPage<MemberVO>> getByPage(MemberSearchVO memberSearchVO, PageVO page) {
        return ResultUtil.data(memberService.getMemberPage(memberSearchVO, page));
    }

--- a/manager-api/src/main/java/cn/lili/controller/passport/AdminUserManagerController.java
+++ b/manager-api/src/main/java/cn/lili/controller/passport/AdminUserManagerController.java
@@ -5,11 +5,13 @@ import cn.lili.common.enums.ResultUtil;
 import cn.lili.common.exception.ServiceException;
 import cn.lili.common.security.AuthUser;
 import cn.lili.common.security.context.UserContext;
+import cn.lili.common.security.enums.UserEnums;
 import cn.lili.common.security.token.Token;
 import cn.lili.common.utils.StringUtils;
 import cn.lili.common.vo.PageVO;
 import cn.lili.common.vo.ResultMessage;
 import cn.lili.common.vo.SearchVO;
+import cn.lili.modules.member.service.MemberService;
 import cn.lili.modules.permission.entity.dos.AdminUser;
 import cn.lili.modules.permission.entity.dto.AdminUserDTO;
 import cn.lili.modules.permission.entity.vo.AdminUserVO;
@@ -51,6 +53,11 @@ public class AdminUserManagerController {
    private AdminUserService adminUserService;
    @Autowired
    private DepartmentService departmentService;
+    /**
+     * 会员
+     */
+    @Autowired
+    private MemberService memberService;

    @Autowired
    private VerificationService verificationService;
@@ -67,6 +74,12 @@ public class AdminUserManagerController {
        }
    }

+    @ApiOperation(value = "注销接口")
+    @PostMapping("/logout")
+    public ResultMessage<Object> logout() {
+        this.memberService.logout(UserEnums.MANAGER);
+        return ResultUtil.success();
+    }

    @ApiOperation(value = "刷新token")
    @GetMapping("/refresh/{refreshToken}")