Showing
1 changed file
with
66 additions
and
0 deletions
README.md
0 → 100644
| 1 | +# xkl-demo程序说明 | ||
| 2 | + | ||
| 3 | +## 部署 | ||
| 4 | +139.129.166.85 | ||
| 5 | +``` | ||
| 6 | +cd /home/fyq | ||
| 7 | +git clone http://gitlab.hanhezy.com/fyq/xkl-demo.git | ||
| 8 | +cd xkl-demo | ||
| 9 | +nohup mvn spring-boot:run > xkl.log & | ||
| 10 | +``` | ||
| 11 | +目前demo部署得比较简单,后续会增加jvm参数 | ||
| 12 | + | ||
| 13 | +## 数据库说明 | ||
| 14 | +用户数据库: | ||
| 15 | +``` | ||
| 16 | +服务器:db.hanhezy.com | ||
| 17 | +端口:4096 | ||
| 18 | +DB:hanhe_test | ||
| 19 | +table:_test | ||
| 20 | +``` | ||
| 21 | +登录token库: | ||
| 22 | +``` | ||
| 23 | +redis.host=r-m5e7cedd3124afd4.redis.rds.aliyuncs.com | ||
| 24 | +redis.password=r-m5e7cedd3124afd4:XIkaiLURedis2016 | ||
| 25 | +``` | ||
| 26 | +## 测试swagger界面 | ||
| 27 | +浏览器访问: | ||
| 28 | +http://139.129.166.85:8090 | ||
| 29 | + | ||
| 30 | +### token测试: | ||
| 31 | +#### 登录 | ||
| 32 | +使用mysql库_test表中的账户名密码登录: | ||
| 33 | +``` | ||
| 34 | +user1 pass1 | ||
| 35 | +或者 | ||
| 36 | +user2 pass2 | ||
| 37 | +``` | ||
| 38 | +得到返回结果中的token | ||
| 39 | +``` | ||
| 40 | +{ | ||
| 41 | + "code": 100, | ||
| 42 | + "message": "成功", | ||
| 43 | + "content": { | ||
| 44 | + "userId": 1, | ||
| 45 | + "token": "d212c69116ee49bfa15594dc9bb83d47" | ||
| 46 | + } | ||
| 47 | +} | ||
| 48 | +``` | ||
| 49 | +#### 退出登录 | ||
| 50 | +在authorization中填入:userId_token | ||
| 51 | + | ||
| 52 | +### userInfo测试: | ||
| 53 | + | ||
| 54 | +#### 查询用户别名信息 | ||
| 55 | +在authorization中填入:userId_token | ||
| 56 | +``` | ||
| 57 | +1_d212c69116ee49bfa15594dc9bb83d47 | ||
| 58 | +``` | ||
| 59 | + | ||
| 60 | +#### 修改用户信息 | ||
| 61 | +顺便可以测试xss | ||
| 62 | +``` | ||
| 63 | +<script>alert(document.cookie)</script> | ||
| 64 | +<script>alert(vulnerable)</script> | ||
| 65 | +%3Cscript%3Ealert('XSS')%3C/script%3E | ||
| 66 | +``` |
-
Please register or login to post a comment