From bf4e1ec13a05268b772a6d5e24204a77c18eaacc Mon Sep 17 00:00:00 2001 From: RuoYi <yzz_ivy@163.com> Date: 星期日, 14 三月 2021 16:44:03 +0800 Subject: [PATCH] velocity剔除commons-collections版本,防止3.2.1版本的反序列化漏洞 --- src/main/java/com/ruoyi/framework/config/SecurityConfig.java | 2 +- 1 files changed, 1 insertions(+), 1 deletions(-) diff --git a/src/main/java/com/ruoyi/framework/config/SecurityConfig.java b/src/main/java/com/ruoyi/framework/config/SecurityConfig.java index 4c3b136..b78ee04 100644 --- a/src/main/java/com/ruoyi/framework/config/SecurityConfig.java +++ b/src/main/java/com/ruoyi/framework/config/SecurityConfig.java @@ -88,7 +88,7 @@ protected void configure(HttpSecurity httpSecurity) throws Exception { httpSecurity - // CRSF绂佺敤锛屽洜涓轰笉浣跨敤session + // CSRF绂佺敤锛屽洜涓轰笉浣跨敤session .csrf().disable() // 璁よ瘉澶辫触澶勭悊绫� .exceptionHandling().authenticationEntryPoint(unauthorizedHandler).and() -- Gitblit v1.9.3