center/dataease-dm
center/dataease-dm
13
0
Fork 0
forked from github/dataease
Code Pull Requests Activity

Merge pull request #1993 from dataease/pr@dev@fix_api_auth_logic

Browse Source 
fix: api权限验证逻辑修复
This commit is contained in:
fit2cloud-chenyw 2022-03-29 14:50:59 +08:00 committed by GitHub
commit 1104d33bf9
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
1 changed files with 1 additions and 0 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

1
backend/src/main/java/io/dataease/auth/aop/DePermissionAnnotationHandler.java
View File

@ -41,6 +41,7 @@ public class DePermissionAnnotationHandler {
DePermission[] dePermissions = annotation.value(); DePermission[] dePermissions = annotation.value();
Object[] args = point.getArgs(); Object[] args = point.getArgs();
if (logical == Logical.AND) { if (logical == Logical.AND) {
access = true;
for (int i = 0; i < dePermissions.length; i++) { for (int i = 0; i < dePermissions.length; i++) {
DePermission permission = dePermissions[i]; DePermission permission = dePermissions[i];
boolean currentAccess = access(args[permission.paramIndex()], permission, 0); boolean currentAccess = access(args[permission.paramIndex()], permission, 0);