center/dataease-dm
center/dataease-dm
13
0
Fork 0
forked from github/dataease
Code Pull Requests Activity

Merge pull request #8332 from dataease/pr@dev@fixdataset

Browse Source 
Pr@dev@fixdataset
This commit is contained in:
taojinlong 2024-03-05 17:11:06 +08:00 committed by GitHub
commit 589e5d4b15
No known key found for this signature in database
GPG Key ID: B5690EEEBB952194
2 changed files with 3 additions and 2 deletions
Show Stats Download Patch File Download Diff File Expand all files Collapse all files

3
core/backend/src/main/java/io/dataease/auth/server/AuthServer.java
View File

@ -197,7 +197,8 @@ public class AuthServer implements AuthApi {
result.put("passwordModified", false);
result.put("defaultPwd", "dataease");
}
if (!user.getIsAdmin() && user.getPassword().equals("83d923c9f1d8fcaa46cae0ed2aaa81b5")) {
if (!user.getIsAdmin() && user.getPassword().equals(CodingUtil.md5(DEFAULT_PWD))) {
result.put("passwordModified", false);
result.put("defaultPwd", DEFAULT_PWD);
}

2
core/backend/src/main/java/io/dataease/service/sys/PluginService.java
View File

@ -65,7 +65,7 @@ public class PluginService {
}
private void checkFileName(String fileName){
if(StringUtils.isEmpty(fileName) || !fileName.endsWith(".jar") || fileName.contains("../")){
if(StringUtils.isEmpty(fileName) || !fileName.endsWith(".zip") || fileName.contains("../")){
DataEaseException.throwException("非法的文件名: " + fileName);
}
}