1 місяць тому · ab2554316a
--- a/gateway/ag-basic/src/main/java/com/yihu/jw/gateway/filter/CORSFilter.java
+++ b/gateway/ag-basic/src/main/java/com/yihu/jw/gateway/filter/CORSFilter.java
@ -37,6 +37,11 @@ public class CORSFilter implements Filter {
 
				//        response.setHeader("Access-Control-Expose-Headers", "*");
			
 
				        response.setHeader("Access-Control-Allow-Methods", "*");
			
 
				        response.setHeader("Access-Control-Max-Age", "3600");
			
 
				        if(request.getRequestURI().contains("dump")){
			
 
				            response.setStatus(HttpServletResponse.SC_FORBIDDEN);
			
 
				            logger.info("SC_FORBIDDEN=======================");
			
 
				            return;
			
 
				        }
			
 
				        //response.setHeader("Access-Control-Allow-Credentials", "true");
			
 
				        if ("OPTIONS".equals(request.getMethod())) {
			
 
				            response.setStatus(HttpServletResponse.SC_OK);
			
--- a/svr/svr-cloud-care/src/main/java/com/yihu/jw/care/interceptors/CrosXssFilter.java
+++ b/svr/svr-cloud-care/src/main/java/com/yihu/jw/care/interceptors/CrosXssFilter.java
@ -5,6 +5,7 @@ import org.slf4j.LoggerFactory;
 
				
			
 
				import javax.servlet.*;
			
 
				import javax.servlet.http.HttpServletRequest;
			
 
				import javax.servlet.http.HttpServletResponse;
			
 
				import java.io.IOException;
			
 
				
			
 
				/**
			
@ -22,6 +23,12 @@ public class CrosXssFilter implements Filter {
 
				        response.setContentType("text/html;charset=utf-8");
			
 
				        //sql,xss过滤
			
 
				        HttpServletRequest httpServletRequest=(HttpServletRequest)request;
			
 
				        HttpServletResponse httpServletResponse = (HttpServletResponse) response;
			
 
				        if(httpServletRequest.getRequestURI().contains("dump")){
			
 
				            httpServletResponse.setStatus(HttpServletResponse.SC_FORBIDDEN);
			
 
				            logger.info("SC_FORBIDDEN=======================");
			
 
				            return;
			
 
				        }
			
 
				        XssHttpServletRequestWrapper xssHttpServletRequestWrapper=new XssHttpServletRequestWrapper(
			
 
				                httpServletRequest);
			
 
				        chain.doFilter(xssHttpServletRequestWrapper, response);
			
--- a/svr/svr-visit-behind/src/main/java/com/yihu/jw/hospital/module/iot/service/IotDeviceService.java
+++ b/svr/svr-visit-behind/src/main/java/com/yihu/jw/hospital/module/iot/service/IotDeviceService.java
@ -3,13 +3,13 @@ package com.yihu.jw.hospital.module.iot.service;
 
				import com.alibaba.fastjson.JSON;
			
 
				import com.alibaba.fastjson.JSONArray;
			
 
				import com.alibaba.fastjson.JSONObject;
			
 
				import com.yihu.jw.device.dao.DevicePatientHealthIndexDao;
			
 
				import com.yihu.jw.entity.base.patient.BasePatientDO;
			
 
				import com.yihu.jw.entity.care.device.DevicePatientHealthIndex;
			
 
				import com.yihu.jw.entity.hospital.consult.WlyyHospitalSysDictDO;
			
 
				import com.yihu.jw.entity.iot.gateway.GcToken;
			
 
				import com.yihu.jw.gateway.dao.GcTokenDao;
			
 
				import com.yihu.jw.hospital.dict.WlyyHospitalSysDictDao;
			
 
				import com.yihu.jw.hospital.module.device.DevicePatientHealthIndexDao;
			
 
				import com.yihu.jw.patient.dao.BasePatientDao;
			
 
				import com.yihu.jw.util.date.DateUtil;
			
 
				import org.springframework.beans.factory.annotation.Autowired;
			
--- a/svr/svr-wlyy-health-bank/src/main/java/com/yihu/jw/controller/CreditsDetailController.java
+++ b/svr/svr-wlyy-health-bank/src/main/java/com/yihu/jw/controller/CreditsDetailController.java
@ -353,7 +353,6 @@ public class CreditsDetailController extends EnvelopRestEndpoint {
 
				
			
 
				    /**
			
 
				     * 居民获取积分
			
 
				     *
			
 
				     * @param creditsDetail
			
 
				     * @return
			
 
				     */