From 6462e51bc8ae920101c4ddb434497c316f662358 Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=B5=B5=E5=BF=A0=E6=9E=97?= <170083662@qq.com>
Date: Tue, 3 Feb 2026 10:34:55 +0800
Subject: [PATCH] =?UTF-8?q?fix(auth):=20=E4=BF=AE=E5=A4=8D=E8=B6=85?=
 =?UTF-8?q?=E7=BA=A7=E7=AE=A1=E7=90=86=E5=91=98=E6=9D=83=E9=99=90=E6=A3=80?=
 =?UTF-8?q?=E6=9F=A5=E4=B8=AD=E7=9A=84=E7=A9=BA=E6=8C=87=E9=92=88=E5=BC=82?=
 =?UTF-8?q?=E5=B8=B8?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- 避免 Boolean 类型自动拆箱导致的 NPE 异常
- 使用 Boolean.TRUE.equals() 安全检查超级管理员权限
- 添加注释说明潜在的空值风险
---
 .../gxwebsoft/common/system/controller/SettingController.java  | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/src/main/java/com/gxwebsoft/common/system/controller/SettingController.java b/src/main/java/com/gxwebsoft/common/system/controller/SettingController.java
index b632148..f681622 100644
--- a/src/main/java/com/gxwebsoft/common/system/controller/SettingController.java
+++ b/src/main/java/com/gxwebsoft/common/system/controller/SettingController.java
@@ -198,7 +198,8 @@ public class SettingController extends BaseController {
       if(loginUser == null){
         return fail("请先登录");
       }
-      if(!loginUser.getIsSuperAdmin()){
+      // getIsSuperAdmin() is a Boolean and may be null; avoid NPE from auto-unboxing.
+      if(!Boolean.TRUE.equals(loginUser.getIsSuperAdmin())){
         return fail("权限不足");
       }