是否验证短信验证码配置到配置我呢见

src/main/java/com/lz/modules/sys/controller/SysLoginController.java

@@ -75,6 +75,8 @@ public class SysLoginController extends AbstractController {
 
     @Autowired
     private StaffService staffService;
+    @Value(value = "${sms.code}")
+    private boolean sendSMSCode;
 
     /**
      * 验证码
@@ -201,7 +203,7 @@ public class SysLoginController extends AbstractController {
             }
         }
         //测试环境将不进行短信验证码，
-        if (true) {
+        if (!sendSMSCode) {
             //账号不存在、密码错误
             if (!user.getPassword().equals(new Sha256Hash(form.getPassword(), user.getSalt()).toHex())) {
                 return R.error("密码不正确!");

src/main/java/com/lz/modules/sys/oauth2/OAuth2Filter.java

@@ -62,7 +62,7 @@ public class OAuth2Filter extends AuthenticatingFilter {
             httpResponse.setHeader("Access-Control-Allow-Credentials", "true");
             httpResponse.setHeader("Access-Control-Allow-Origin", HttpContextUtils.getOrigin());
 
-            String json = new Gson().toJson(R.error(HttpStatus.SC_UNAUTHORIZED, "登录已过期，请重新登录"));
+            String json = new Gson().toJson(R.error(HttpStatus.SC_UNAUTHORIZED, "invalid token"));
             httpResponse.getWriter().print(json);
 
             return false;

src/main/resources/application-dev.yml

@@ -35,6 +35,8 @@ dingtalk:
     appid: 855818566
 domain:
     main: "http://192.168.43.94:8001"
+sms:
+    code: false
 
 ##多数据源的配置
 #dynamic:

src/main/resources/application-prod.yml

@@ -34,7 +34,8 @@ dingtalk:
     appid: 856016278
 domain:
     main: "https://lzmanagement.ldxinyong.com"
-
+sms:
+    code: true
 ##多数据源的配置
 #dynamic:
 #  datasource:

src/main/resources/application-test.yml

@@ -34,7 +34,8 @@ dingtalk:
     appid: 855818566
 domain:
     main: "http:/localhost"
-
+sms:
+    code: false
 
 
 ##多数据源的配置