From a1b85ef72062ca80db35546e4216dd564f3e0f57 Mon Sep 17 00:00:00 2001
From: WangHan <wwh_work@126,com>
Date: 星期四, 03 四月 2025 15:58:19 +0800
Subject: [PATCH] 问题与漏洞修改

---
 consum-base/src/main/java/com/consum/base/controller/UsingFormBackController.java |   54 +++++++++++++++++++++++++++++++++---------------------
 1 files changed, 33 insertions(+), 21 deletions(-)

diff --git a/consum-base/src/main/java/com/consum/base/controller/UsingFormBackController.java b/consum-base/src/main/java/com/consum/base/controller/UsingFormBackController.java
index 259a48d..4339553 100644
--- a/consum-base/src/main/java/com/consum/base/controller/UsingFormBackController.java
+++ b/consum-base/src/main/java/com/consum/base/controller/UsingFormBackController.java
@@ -1,6 +1,13 @@
 package com.consum.base.controller;
 
+import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.web.bind.annotation.GetMapping;
+import org.springframework.web.bind.annotation.PostMapping;
+import org.springframework.web.bind.annotation.RequestMapping;
+import org.springframework.web.bind.annotation.RestController;
+
 import com.consum.base.BaseController;
+import com.consum.base.core.utils.CommonUtil;
 import com.consum.base.core.utils.PageUtil;
 import com.consum.base.pojo.query.UsingFormBackQry;
 import com.consum.base.pojo.request.UsingFormBackParam;
@@ -8,14 +15,9 @@
 import com.consum.base.service.UsingFormBackService;
 import com.consum.model.po.FinSysTenantUser;
 import com.walker.web.ResponseValue;
-import io.swagger.annotations.Api;
-import io.swagger.annotations.ApiOperation;
-import org.springframework.beans.factory.annotation.Autowired;
-import org.springframework.web.bind.annotation.GetMapping;
-import org.springframework.web.bind.annotation.PostMapping;
-import org.springframework.web.bind.annotation.RequestBody;
-import org.springframework.web.bind.annotation.RequestMapping;
-import org.springframework.web.bind.annotation.RestController;
+
+
+
 
 /**
  * @author asus
@@ -23,7 +25,7 @@
  * @description: 閮ㄩ棬鐗╁搧閫�鍥炲崟
  * @date 2023/12/1 11:36
  */
-@Api(value = "閮ㄩ棬鐗╁搧閫�鍥�", tags = "閮ㄩ棬鐗╁搧閫�鍥�")
+// @Api(value = "閮ㄩ棬鐗╁搧閫�鍥�", tags = "閮ㄩ棬鐗╁搧閫�鍥�")
 @RestController
 @RequestMapping("/pc/l/wh/using/form/back")
 public class UsingFormBackController extends BaseController {
@@ -31,23 +33,30 @@
     @Autowired
     private UsingFormBackService usingFormBackService;
 
-
-    @ApiOperation(value = "閮ㄩ棬鐗╁搧閫�鍥炲崟鏂板鎺ュ彛", notes = "閮ㄩ棬鐗╁搧閫�鍥炲崟鏂板鎺ュ彛")
+    // @ApiOperation(value = "閮ㄩ棬鐗╁搧閫�鍥炲崟鏂板鎺ュ彛", notes = "閮ㄩ棬鐗╁搧閫�鍥炲崟鏂板鎺ュ彛")
     @PostMapping("/add")
-    public ResponseValue add(@RequestBody UsingFormBackParam usingFormBackParam) {
+    public ResponseValue add() {
+        UsingFormBackParam usingFormBackParam = CommonUtil.getObjFromReqBody(UsingFormBackParam.class);
+        UsingFormBackParam param2 = new UsingFormBackParam();
+        CommonUtil.copyProperties(usingFormBackParam, param2);
+        usingFormBackParam = param2;
 
         FinSysTenantUser sysInfo = getSysInfo();
         if (sysInfo == null) {
             return ResponseValue.error("璇峰厛鐧诲綍");
         }
-        usingFormBackService.add(usingFormBackParam, sysInfo);
+        usingFormBackService.add(usingFormBackParam, sysInfo, this.getCurrentUser());
         return ResponseValue.success();
     }
 
-
-    @ApiOperation(value = "閮ㄩ棬鐗╁搧閫�鍥炲崟鏌ヨ鎺ュ彛", notes = "閮ㄩ棬鐗╁搧閫�鍥炲崟鏌ヨ鎺ュ彛")
+    // @ApiOperation(value = "閮ㄩ棬鐗╁搧閫�鍥炲崟鏌ヨ鎺ュ彛", notes = "閮ㄩ棬鐗╁搧閫�鍥炲崟鏌ヨ鎺ュ彛")
     @GetMapping("/list")
-    public ResponseValue query(UsingFormBackQry usingFormBackParam) {
+    public ResponseValue query() {
+        UsingFormBackQry usingFormBackParam = CommonUtil.getObjFromReq(UsingFormBackQry.class);
+        UsingFormBackQry param2 = new UsingFormBackQry();
+        CommonUtil.copyProperties(usingFormBackParam, param2);
+        usingFormBackParam = param2;
+
         FinSysTenantUser sysInfo = getSysInfo();
         if (sysInfo == null) {
             return ResponseValue.error("璇峰厛鐧诲綍");
@@ -57,8 +66,7 @@
         return ResponseValue.success(page);
     }
 
-
-    @ApiOperation(value = "閮ㄩ棬鐗╁搧閫�鍥炲崟璇︽儏鎺ュ彛", notes = "閮ㄩ棬鐗╁搧閫�鍥炲崟璇︽儏鎺ュ彛")
+    // @ApiOperation(value = "閮ㄩ棬鐗╁搧閫�鍥炲崟璇︽儏鎺ュ彛", notes = "閮ㄩ棬鐗╁搧閫�鍥炲崟璇︽儏鎺ュ彛")
     @GetMapping("/detail")
     public ResponseValue detail(Long id) {
         FinSysTenantUser sysInfo = getSysInfo();
@@ -69,10 +77,14 @@
         return ResponseValue.success(detail);
     }
 
-
-    @ApiOperation(value = "閮ㄩ棬鐗╁搧閫�鍥炴槑缁嗘煡璇㈡帴鍙�", notes = "閮ㄩ棬鐗╁搧閫�鍥炴槑缁嗘煡璇㈡帴鍙�")
+    // @ApiOperation(value = "閮ㄩ棬鐗╁搧閫�鍥炴槑缁嗘煡璇㈡帴鍙�", notes = "閮ㄩ棬鐗╁搧閫�鍥炴槑缁嗘煡璇㈡帴鍙�")
     @GetMapping("/list/detail")
-    public ResponseValue queryListDetail(UsingFormBackQry usingFormBackParam) {
+    public ResponseValue queryListDetail() {
+        UsingFormBackQry usingFormBackParam = CommonUtil.getObjFromReq(UsingFormBackQry.class);
+        UsingFormBackQry param2 = new UsingFormBackQry();
+        CommonUtil.copyProperties(usingFormBackParam, param2);
+        usingFormBackParam = param2;
+
         FinSysTenantUser sysInfo = getSysInfo();
         if (sysInfo == null) {
             return ResponseValue.error("璇峰厛鐧诲綍");

--
Gitblit v1.9.1