update 优化密码校验策略增加非法字符限制

2024-03-04 10:05:47 +08:00
parent 26cfa7afc4
commit 5cb40abe18
3 changed files with 12 additions and 4 deletions
--- a/src/views/system/user/index.vue
+++ b/src/views/system/user/index.vue
@ -395,7 +395,8 @@ const initData: PageData<UserForm, UserQuery> = {
        max: 20,
        message: '用户密码长度必须介于 5 和 20 之间',
        trigger: 'blur'
-      }
+      },
+      { pattern: /^[^<>"'|\\]+$/, message: "不能包含非法字符：< > \" ' \\\ |", trigger: "blur" }
    ],
    email: [
      {
@ -504,7 +505,12 @@ const handleResetPwd = async (row: UserVO) => {
      cancelButtonText: '取消',
      closeOnClickModal: false,
      inputPattern: /^.{5,20}$/,
-      inputErrorMessage: '用户密码长度必须介于 5 和 20 之间'
+      inputErrorMessage: '用户密码长度必须介于 5 和 20 之间',
+      inputValidator: (value) => {
+        if (/<|>|"|'|\||\\/.test(value)) {
+          return "不能包含非法字符：< > \" ' \\\ |"
+        }
+      }
    })
  );
  if (!err && res) {