修改部分代码审计问题，提交审计结果

cfe1cf8f · 罗承锋 · 6b2c737d · cfe1cf8f · cfe1cf8f · cfe1cf8f
Commit cfe1cf8f authored Oct 21, 2020 by 罗承锋
Showing with 2 additions and 5 deletions

service-manager/src/main/java/com/winsun/controller/LzKpiController.java
+0 -3

service-manager/src/main/java/com/winsun/controller/SchoolManagementController.java
+2 -2

校园新框架代码审计结果.xls
+0 -0

No files found.
--- a/service-manager/src/main/java/com/winsun/controller/LzKpiController.java
+++ b/service-manager/src/main/java/com/winsun/controller/LzKpiController.java
@@ -523,9 +523,6 @@ public class LzKpiController extends BaseController {
        if (!StringUtils.endsWithAny(file.getOriginalFilename(), "xlsx", "xls")) {
            return ResponseData.error("手工上传数据仅支持Excel文件，其他格式不支持！");
        }
-        if ( (double)file.getSize()/1048576 > 100) {
-            return ResponseData.error("文件过大，无法上传");
-        }
        ShiroUser user = getShiroUser();
        // 当前是否有数据权限
        boolean hasDataPermission = user.getRoleNames().stream().anyMatch(data -> StringUtils.equalsAny(data, "活动上单员", "数据管理员", "超级管理员"));

--- a/service-manager/src/main/java/com/winsun/controller/SchoolManagementController.java
+++ b/service-manager/src/main/java/com/winsun/controller/SchoolManagementController.java
@@ -257,8 +257,8 @@ public class SchoolManagementController extends BaseController {
        if ( (double)file.getSize()/1048576 > 100) {
            return ResponseData.error("图片过大，无法上传");
        }
-
-        File savePath = new File(backgroundpath, id + FILENAME);
+        School school1 = schoolMapper.selectById(id);
+        File savePath = new File(backgroundpath, school1.getId() + FILENAME);
        OutputStream os = null;
        try {
            os = new FileOutputStream(savePath);

--- a/校园新框架代码审计结果.xls
+++ b/校园新框架代码审计结果.xls