修复安全问题

2021-09-02 11:00:54 +08:00 · 2021-09-02 11:00:54 +08:00 · 8a596d7d33
commit 8a596d7d33
parent ce7cb90744
1 changed files with 8 additions and 3 deletions
--- a/controllers/login.go
+++ b/controllers/login.go
@ -325,9 +325,14 @@ func FetchJdCookieValue(key string, cookies string) string {
 }

 func (c *LoginController) IsAdmin() {
-	pin := c.GetString("pin")
-	c.SetSession("pin", pin)
-	c.Ctx.WriteString("登录")
+	if v := c.GetSession("pin"); v == nil {
+		c.Ctx.Redirect(302, "/")
+		c.StopRun()
+	} else {
+		pin := c.GetString("pin")
+		c.SetSession("pin", pin)
+		c.Ctx.WriteString("登录")
+	}
 }

 func (c *LoginController) Cookie() {