iot init

2026-04-23 02:48:34 +08:00 · 2023-08-22 15:17:14 +08:00
parent 85f4f328f4
commit 4344771547
143 changed files with 13004 additions and 6957 deletions
--- a/pkg/middleware/escape_html.go
+++ b/pkg/middleware/escape_html.go
@@ -0,0 +1,17 @@
+package middleware
+
+import (
+	"github.com/emicklei/go-restful/v3"
+	"html"
+)
+
+// 防止XSS攻击
+func EscapeHTML(req *restful.Request, resp *restful.Response, chain *restful.FilterChain) {
+	// 获取请求参数中的HTML标签
+	for _, p := range req.Request.URL.Query() {
+		escaped := html.EscapeString(p[0])
+		// 将转义后的参数重新设置到请求参数中
+		req.Request.URL.Query().Set(p[0], escaped)
+	}
+	chain.ProcessFilter(req, resp)
+}