From 59e7b9172b2067e396419c59cf9ec0ae93096c45 Mon Sep 17 00:00:00 2001 From: fit2cloud-chenyw Date: Wed, 8 Jun 2022 12:52:41 +0800 Subject: [PATCH] =?UTF-8?q?fix:=20sql=E6=B3=A8=E5=85=A5=E7=BB=99=E5=87=BA?= =?UTF-8?q?=E6=8F=90=E7=A4=BA?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit --- .../java/io/dataease/commons/filter/SqlFilter.java | 11 +++++++---- 1 file changed, 7 insertions(+), 4 deletions(-) diff --git a/backend/src/main/java/io/dataease/commons/filter/SqlFilter.java b/backend/src/main/java/io/dataease/commons/filter/SqlFilter.java index 80d9b9d1dc..d97a0133f0 100644 --- a/backend/src/main/java/io/dataease/commons/filter/SqlFilter.java +++ b/backend/src/main/java/io/dataease/commons/filter/SqlFilter.java @@ -1,5 +1,6 @@ package io.dataease.commons.filter; +import io.dataease.commons.exception.DEException; import io.dataease.commons.holder.ThreadLocalContextHolder; import io.dataease.commons.wrapper.XssAndSqlHttpServletRequestWrapper; import org.apache.commons.lang3.StringUtils; @@ -42,9 +43,10 @@ public class SqlFilter implements Filter { if (xssRequest.checkXSSAndSql(param)) { response.setCharacterEncoding("UTF-8"); response.setContentType("application/json;charset=UTF-8"); - PrintWriter out = response.getWriter(); + // PrintWriter out = response.getWriter(); String msg = ThreadLocalContextHolder.getData().toString(); - out.write(msg); + // out.write(msg); + DEException.throwException(msg); return; } } @@ -52,9 +54,10 @@ public class SqlFilter implements Filter { if (xssRequest.checkParameter()) { response.setCharacterEncoding("UTF-8"); response.setContentType("application/json;charset=UTF-8"); - PrintWriter out = response.getWriter(); + // PrintWriter out = response.getWriter(); String msg = ThreadLocalContextHolder.getData().toString(); - out.write(msg); + // out.write(msg); + DEException.throwException(msg); return; } chain.doFilter(xssRequest, response);