dushitaoyuan/javaweb_security_handle
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

修复字符大小写匹配

Browse Source
This commit is contained in:
dushitaoyuan
2019-11-02 23:15:12 +08:00
parent f4e1a8576f
commit 1b6ab1bcf5
1 changed files with 4 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

5
src/main/java/com/taoyuanx/securitydemo/utils/RequestParamFilterUtil.java
View File

@@ -1,9 +1,11 @@
package com.taoyuanx.securitydemo.utils; package com.taoyuanx.securitydemo.utils;
import com.google.common.base.Splitter; import com.google.common.base.Splitter;
import org.springframework.util.StringUtils;
import org.springframework.web.util.HtmlUtils; import org.springframework.web.util.HtmlUtils;
import java.util.List; import java.util.List;
import java.util.Objects;
/** /**
* @author dushitaoyuan * @author dushitaoyuan
@@ -51,7 +53,7 @@ public class RequestParamFilterUtil {
} }
for (String param : params) { for (String param : params) {
for (int i = 0, len = SQL_KEY_WORDS.size(); i < len; i++) { for (int i = 0, len = SQL_KEY_WORDS.size(); i < len; i++) {
if (param.contains(" " + SQL_KEY_WORDS.get(i) + " ")) { if (param.toLowerCase().contains(" " + SQL_KEY_WORDS.get(i) + " ")) {
return true; return true;
} }
} }
@@ -59,4 +61,5 @@ public class RequestParamFilterUtil {
return false; return false;
} }
} }