New issue
Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.
By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.
Already on GitHub? Sign in to your account
pig和pigx都存在问题,使用手机验证码方式登录,只需要手机号不需要验证码就可以登录 #428
Comments
1.我不是会员 |
@xiaofeifei112 开源版没有 手机和社交登陆 |
@xiaofeifei112 非常感谢 |
我不是会员,咋个去会员群提bug? |
我专门去办个会员,提交一个bug? |
Sign up for free
to join this conversation on GitHub.
Already have an account?
Sign in to comment
版本信息
###问题描述(包括回显步骤、截图 )
使用密码模式的code和randomStr,可以绕开手机验证码登录的code进行登录
步骤如下:
code:8fba
randomStr:22711557219999347
https://pigx.pig4cloud.com/auth/mobile/token/sms?mobile=SMS@17034642889&grant_type=mobile&code=8fba&randomStr=22711557219999347
###解决方案
请求中的mobile参数不为空,就只能通过mobile来获取redis中的code,不要再通过randomStr来获取code
The text was updated successfully, but these errors were encountered: