Browse Source

升级shiro到最新版1.4.2 阻止rememberMe漏洞攻击

RuoYi 5 years ago
parent
commit
208c4a8417
2 changed files with 1 additions and 6 deletions
  1. 1 1
      pom.xml
  2. 0 5
      ruoyi-common/src/main/java/com/ruoyi/common/constant/Constants.java

+ 1 - 1
pom.xml

@@ -17,7 +17,7 @@
 		<project.build.sourceEncoding>UTF-8</project.build.sourceEncoding>
 		<project.reporting.outputEncoding>UTF-8</project.reporting.outputEncoding>
 		<java.version>1.8</java.version>
-		<shiro.version>1.4.1</shiro.version>
+		<shiro.version>1.4.2</shiro.version>
 		<thymeleaf.extras.shiro.version>2.0.0</thymeleaf.extras.shiro.version>
 		<mybatis.boot.version>1.3.2</mybatis.boot.version>
 		<druid.version>1.1.14</druid.version>

+ 0 - 5
ruoyi-common/src/main/java/com/ruoyi/common/constant/Constants.java

@@ -37,11 +37,6 @@ public class Constants
      */
     public static final String LOGIN_FAIL = "Error";
 
-    /**
-     * 自动去除表前缀
-     */
-    public static final String AUTO_REOMVE_PRE = "true";
-
     /**
      * 当前记录起始索引
      */