From 4a94c879b878f409689375ec9401409be414cfcd Mon Sep 17 00:00:00 2001
From: zhaojun <873019219@qq.com>
Date: Sat, 26 Nov 2022 18:10:04 +0800
Subject: [PATCH] =?UTF-8?q?:bug:=20=E4=BF=AE=E5=A4=8D=20referer=20?=
 =?UTF-8?q?=E9=98=B2=E7=9B=97=E9=93=BE=E5=85=81=E8=AE=B8=E4=B8=BA=E7=A9=BA?=
 =?UTF-8?q?=E6=97=B6=EF=BC=8C=E4=BB=8D=E7=84=B6=E5=8E=BB=E9=BB=91/?=
 =?UTF-8?q?=E7=99=BD=E5=90=8D=E5=8D=95=E6=A0=A1=E9=AA=8C=E7=9A=84=20bug?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 .../zhaojun/zfile/module/link/aspect/RefererCheckAspect.java  | 4 ++--
 1 file changed, 2 insertions(+), 2 deletions(-)

diff --git a/src/main/java/im/zhaojun/zfile/module/link/aspect/RefererCheckAspect.java b/src/main/java/im/zhaojun/zfile/module/link/aspect/RefererCheckAspect.java
index c53fef2..67f7d8e 100644
--- a/src/main/java/im/zhaojun/zfile/module/link/aspect/RefererCheckAspect.java
+++ b/src/main/java/im/zhaojun/zfile/module/link/aspect/RefererCheckAspect.java
@@ -75,6 +75,8 @@ public class RefererCheckAspect {
 			log.warn("请求路径 {}, referer 不允许为空，当前请求 referer 为空，禁止访问.", requestUrl);
 			httpServletResponse.sendRedirect(forbiddenUrl);
 			return null;
+		} else if (refererAllowEmpty && StrUtil.isEmpty(referer)) { // 如果 referer 允许为空，且当前 referer 为空，则跳过校验
+			return point.proceed();
 		}
 
 		// 获取允许的 referer 地址
@@ -86,8 +88,6 @@ public class RefererCheckAspect {
 			log.warn("请求路径 {}, referer 为白名单模式，当前请求 referer {} 未在白名单中，禁止访问.", requestUrl, referer);
 			httpServletResponse.sendRedirect(forbiddenUrl);
 			return null;
-		} else if (refererAllowEmpty && StrUtil.isEmpty(referer)) { // 如果 referer 允许为空，且当前 referer 为空，则跳过校验
-			return point.proceed();
 		}
 
 		// 如果是黑名单模式，则校验当前 referer 是否在列表中，则禁止访问.