修改token长度验证-yxm

a96fd08b · 李健华 · b1829ee8 · a96fd08b · a96fd08b
Commit a96fd08b authored Jan 06, 2022 by 李健华
Showing with 5 additions and 5 deletions

PasswordFreeAccessValidateAdvisor.java .../xyqb/aspect/limit/PasswordFreeAccessValidateAdvisor.java +4 -4

SessionServiceImpl.java ...ntgroup/xyqb/service/session/impl/SessionServiceImpl.java +1 -1

No files found.
--- a/src/main/java/cn/quantgroup/xyqb/aspect/limit/PasswordFreeAccessValidateAdvisor.java
+++ b/src/main/java/cn/quantgroup/xyqb/aspect/limit/PasswordFreeAccessValidateAdvisor.java
@@ -81,10 +81,10 @@ public class PasswordFreeAccessValidateAdvisor {
        }
        // 当前请求的Token
        String token = request.getHeader(Constants.X_AUTH_TOKEN);
-        if (StringUtils.length(token) != Constants.TOKEN_LENGTH) {
+//        if (StringUtils.length(token) != Constants.TOKEN_LENGTH) {
-            log.info("非法请求 - 无效token, token={}, phoneNo={}, userId={}, clientIp={}", token, phoneNo, userId, clientIp);
+//            log.info("非法请求 - 无效token, token={}, phoneNo={}, userId={}, clientIp={}", token, phoneNo, userId, clientIp);
-            return false;
+//            return false;
-        }
+//        }
        // 当前session
        SessionStruct session = XyqbSessionContextHolder.getXSessionFromRedis(token);

--- a/src/main/java/cn/quantgroup/xyqb/service/session/impl/SessionServiceImpl.java
+++ b/src/main/java/cn/quantgroup/xyqb/service/session/impl/SessionServiceImpl.java
@@ -82,7 +82,7 @@ public class SessionServiceImpl implements ISessionService {
        SessionStruct sessionStruct;
        //获取sessionid
        String sessionId = findSessionIdByUserIdLoginProperties(user.getId(), properties);
-        if (StringUtils.length(sessionId) == Constants.TOKEN_LENGTH) {
+        if (StringUtils.length(sessionId) > 0) {
            sessionStruct = findSessionBySessionId(sessionId);
            if (sessionStruct == null) {
                sessionStruct = newSession(user, properties);