From daf7acb4f107a427e4a83ba1eb26e5e6012cbdaf Mon Sep 17 00:00:00 2001
From: kongzy <kongzy>
Date: 星期三, 26 六月 2024 17:04:52 +0800
Subject: [PATCH] update

---
 exam-admin/src/main/java/com/gkhy/exam/admin/app/AppQuestionBankController.java |    6 ++++++
 1 files changed, 6 insertions(+), 0 deletions(-)

diff --git a/exam-admin/src/main/java/com/gkhy/exam/admin/app/AppQuestionBankController.java b/exam-admin/src/main/java/com/gkhy/exam/admin/app/AppQuestionBankController.java
index 92b2a1f..a74f3bb 100644
--- a/exam-admin/src/main/java/com/gkhy/exam/admin/app/AppQuestionBankController.java
+++ b/exam-admin/src/main/java/com/gkhy/exam/admin/app/AppQuestionBankController.java
@@ -1,6 +1,7 @@
 package com.gkhy.exam.admin.app;
 
 
+import com.gkhy.exam.common.annotation.RepeatSubmit;
 import com.gkhy.exam.common.api.CommonResult;
 import com.gkhy.exam.system.domain.ExQuestionBank;
 import com.gkhy.exam.system.service.ExQuestionBankService;
@@ -9,6 +10,7 @@
 import io.swagger.annotations.ApiImplicitParams;
 import io.swagger.annotations.ApiOperation;
 import org.springframework.beans.factory.annotation.Autowired;
+import org.springframework.security.access.prepost.PreAuthorize;
 import org.springframework.web.bind.annotation.*;
 
 /**
@@ -26,6 +28,7 @@
     @Autowired
     private ExQuestionBankService questionBankService;
 
+    @PreAuthorize("hasAnyAuthority('train:exam:student')")
     @ApiOperation(value = "题库列表(分页)")
     @ApiImplicitParams({
             @ApiImplicitParam(paramType = "query", name = "pageNum", dataType = "int", required = false, value = "当前页,默认1"),
@@ -36,6 +39,7 @@
         return CommonResult.success(questionBankService.selectQuestionBankListForStudent(questionBank));
     }
 
+    @PreAuthorize("hasAnyAuthority('train:exam:student')")
     @ApiOperation(value = "根据id获取题库信息")
     @GetMapping(value = { "/{bankId}" })
     public CommonResult getQuestionBankInfo(@PathVariable(value = "bankId", required = true) Long bankId)
@@ -43,6 +47,8 @@
         return CommonResult.success(questionBankService.selectQuestionBankByIdForStudent(bankId));
     }
 
+    @RepeatSubmit
+    @PreAuthorize("hasAnyAuthority('train:exam:student')")
     @ApiOperation(value = "清除刷题记录")
     @GetMapping(value = { "/clearExerciseRecord" })
     public CommonResult clearExerciseRecord(@RequestParam(value = "bankId", required = true) Long bankId)

--
Gitblit v1.9.2