面试/面谈

coolstore-partner-web/src/main/java/com/cool/store/config/SignValidateFilter.java

@@ -5,12 +5,11 @@ import com.alibaba.fastjson.JSONObject;
 import com.cool.store.constants.CommonConstants;
 import com.cool.store.context.PartnerUserHolder;
 import com.cool.store.enums.ErrorCodeEnum;
+import com.cool.store.exception.ServiceException;
 import com.cool.store.response.ResponseResult;
 import com.cool.store.service.WechatMiniAppService;
-import com.cool.store.utils.AESDecryptor;
+import com.cool.store.utils.*;
-import com.cool.store.utils.Md5Utils;
+import com.cool.store.utils.poi.StringUtils;
-import com.cool.store.utils.Sha1Utils;
-import com.cool.store.utils.UUIDUtils;
 import com.cool.store.vo.PartnerUserInfoVO;
 import com.google.common.collect.Lists;
 import lombok.extern.slf4j.Slf4j;
@@ -104,6 +103,9 @@ public class SignValidateFilter implements Filter {
             String timestamp = request.getHeader("TIMESTAMP");
             String aesPhone = request.getHeader("PHONE");
             String openid = request.getHeader("OPENID");
+            if(StringUtils.isAnyBlank(sign, nonce, timestamp, aesPhone, openid)){
+                throw new ServiceException(ErrorCodeEnum.SIGN_FAIL);
+            }
             log.info("aesPhone:{}, signKey:{}", aesPhone, signKey);
             String phone = AESDecryptor.decrypt(aesPhone, signKey);
             String plaintextOpenid = AESDecryptor.decrypt(openid, signKey);