From 16d1b061d8462aa5da6792cd65e36819b21f9d3f Mon Sep 17 00:00:00 2001
From: wuxw <928255095@qq.com>
Date: 星期一, 23 十月 2023 01:09:56 +0800
Subject: [PATCH] 优化西宁浦发银行 渗透测试漏洞解决

---
 service-user/src/main/java/com/java110/user/cmd/login/PcUserLoginCmd.java |    2 ++
 1 files changed, 2 insertions(+), 0 deletions(-)

diff --git a/service-user/src/main/java/com/java110/user/cmd/login/PcUserLoginCmd.java b/service-user/src/main/java/com/java110/user/cmd/login/PcUserLoginCmd.java
index 29ad81e..d7bf1ac 100644
--- a/service-user/src/main/java/com/java110/user/cmd/login/PcUserLoginCmd.java
+++ b/service-user/src/main/java/com/java110/user/cmd/login/PcUserLoginCmd.java
@@ -97,6 +97,7 @@
         Assert.jsonObjectHaveKey(paramIn, "passwd", "鐢ㄦ埛鐧诲綍锛屾湭鍖呭惈passwd鑺傜偣锛岃妫�鏌�" + paramIn);
 
 
+        AuthenticationFactory.checkLoginErrorCount(reqJson.getString("username"));
     }
 
     @Override
@@ -117,6 +118,7 @@
         }
         if (userDtos == null || userDtos.size() < 1) {
             responseEntity = new ResponseEntity<String>("鐢ㄦ埛鎴栧瘑鐮侀敊璇�", HttpStatus.UNAUTHORIZED);
+            AuthenticationFactory.userLoginError(paramInJson.getString("username"));
             cmdDataFlowContext.setResponseEntity(responseEntity);
             return;
         }

--
Gitblit v1.8.0