Skip to content

P
performance
Commit 99470398 by wyc
Options

大小写比对

parent 0b5b8bf8
Showing with 8 additions and 3 deletions
performance/Performance.Api/Filters/AntiSqlInjectFilter.cs
......@@ -105,7 +105,7 @@ public AntiSqlInjectFilter(IOptions<Application> options)
if (_application.OpenAntiSqlInject == true)
{
var routePath = context.HttpContext.Request.Path.ToString();
if (_application.AntiSqlInjectRouteWhite?.Any(route => route.Equals(routePath)) != true)
if (_application.AntiSqlInjectRouteWhite?.Any(route => route.Equals(routePath,StringComparison.OrdinalIgnoreCase)) != true)
{
foreach (var value in context.ActionArguments.Where(w => w.Value != null).Select(w => w.Value))
{
......
performance/Performance.Api/appsettings.Localhost.json
......@@ -15,8 +15,8 @@
"OpenAntiSqlInject": true,
// 开启反SQL注入白名单地址
"AntiSqlInjectRouteWhite": [
"account/logins",
"account/quick/login"
"/api/account/login",
"/api/account/quick/login"
],
//登录过期时间
"ExpirationMinutes": "1200",
......
performance/Performance.Api/wwwroot/Performance.DtoModels.xml
......@@ -54,6 +54,11 @@
是否开启反SQL注入 默认关闭 true 开启 false 关闭
</summary>
</member>
<member name="P:Performance.DtoModels.AppSettings.Application.AntiSqlInjectRouteWhite">
<summary>
开启反SQL注入白名单地址
</summary>
</member>
<member name="P:Performance.DtoModels.AppSettings.RateLimitingConfig.Endpoints">
<summary>
路径
......
Markdown is supported
0% or
You are about to add 0 people to the discussion. Proceed with caution.
Finish editing this message first!
Please register or to comment