From 808766eeac263571828de1557c9e79cea110330c Mon Sep 17 00:00:00 2001
From: =?UTF-8?q?=E8=B5=B5=E5=BF=A0=E6=9E=97?= <170083662@qq.com>
Date: Fri, 3 Apr 2026 11:53:46 +0800
Subject: [PATCH] =?UTF-8?q?fix(sms):=20=E4=BF=AE=E5=A4=8D=E7=9F=AD?=
 =?UTF-8?q?=E4=BF=A1=E9=AA=8C=E8=AF=81=E7=A0=81=E5=8F=91=E9=80=81=E5=8A=9F?=
 =?UTF-8?q?=E8=83=BD=E7=9A=84=E5=AE=89=E5=85=A8=E6=80=A7=E5=92=8C=E7=A8=B3?=
 =?UTF-8?q?=E5=AE=9A=E6=80=A7=E9=97=AE=E9=A2=98?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

- 添加了参数校验，防止空参数导致的异常
- 替换了硬编码的阿里云密钥配置，支持租户自定义配置
- 修复了随机数生成器的安全问题，使用ThreadLocalRandom替代Random
- 添加了日志记录功能，便于问题排查和监控
- 优化了Redis缓存键的存储逻辑，兼容历史数据格式
- 增强了异常处理机制，提供更详细的错误信息反馈
- 修复了短信模板参数格式问题，确保验证码正确传递
- 添加了手机号脱敏处理，保护用户隐私安全
---
 .../gxwebsoft/common/system/controller/SettingController.java | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/main/java/com/gxwebsoft/common/system/controller/SettingController.java b/src/main/java/com/gxwebsoft/common/system/controller/SettingController.java
index 1684ee1..fe42930 100644
--- a/src/main/java/com/gxwebsoft/common/system/controller/SettingController.java
+++ b/src/main/java/com/gxwebsoft/common/system/controller/SettingController.java
@@ -199,8 +199,8 @@ public class SettingController extends BaseController {
         return fail("请先登录");
       }
       // getIsSuperAdmin() is a Boolean and may be null; avoid NPE from auto-unboxing.
-      if(!"superAdmin".equals(loginUser.getNickname())){
-        return fail("只有超管才有权限编辑");
+      if(!"superAdmin".equals(loginUser.getUsername())){
+        return fail("权限不足！");
       }
 
       // 转换为Setting对象