jwy
/
aeon_business_back
1
0
Fork 0
Code Issues Pull Requests Projects Releases Wiki Activity
Browse Source

queryAlertForwardConfigByAlarmTmplIds接口referer问题

jwy
review512jwy@163.com 1 month ago
parent
4f57fdc934
commit
3129b24925
1 changed files with 1 additions and 1 deletions
Whitespace
Show all changes Ignore whitespace when comparing lines Ignore changes in amount of whitespace Ignore changes in whitespace at EOL
Split View
Diff Options
Show Stats Download Patch File Download Diff File
  1. 2
      data-center-business-controller/src/main/java/com/techsor/datacenter/business/configurator/CrosXssFilter.java

2
data-center-business-controller/src/main/java/com/techsor/datacenter/business/configurator/CrosXssFilter.java
View File

@ -53,7 +53,7 @@ public class CrosXssFilter implements Filter {
String requestUri = httpRequest.getRequestURI();
// 当 URL 不包含 /common/ 时,校验 Referer
// if (!requestUri.contains("/common/") && !requestUri.contains("swagger")) {
if (!requestUri.contains("/swagger") && !requestUri.contains("/api-docs")
if (!requestUri.contains("/swagger") && !requestUri.contains("/api-docs") && !requestUri.contains("/queryAlertForwardConfigByAlarmTmplIds")
&& !requestUri.contains("websocket")) {
String referer = httpRequest.getHeader("Referer");
if (StringUtils.isNotBlank(referer)){

Write Preview
Loading…
Cancel
Save