v

server/Application/Api/Controller/AdminItemController.class.php

@@ -14,11 +14,11 @@ class AdminItemController extends BaseController {
         $username = I("username");
         $where = " 1 = 1 ";
         if ($item_name) {
-            $item_name = mysql_escape_string($item_name);
+            $item_name = \SQLite3::escapeString($item_name);
            $where .= " and item_name like '%{$item_name}%' ";
         }
         if ($username) {
-            $username = mysql_escape_string($username);
+            $username = \SQLite3::escapeString($username);
            $where .= " and username like '%{$username}%' ";
         }
         $items = D("Item")->where($where)->order(" addtime desc  ")->page($page ,$count)->select();

server/Application/Api/Controller/AdminUserController.class.php

@@ -13,7 +13,7 @@ class AdminUserController extends BaseController {
         $username = I("username");
         $where = " 1 = 1 ";
         if ($username) {
-            $username = mysql_escape_string($username);
+            $username = \SQLite3::escapeString($username);
            $where .= " and username like '%{$username}%' ";
         }
         $Users = D("User")->where($where)->page($page ,$count)->order(" uid desc  ")->select();

web_src/src/components/user/Login.vue

@@ -90,8 +90,17 @@ export default {
       }
   },
   mounted() {
+    var that = this ;
     /*给body添加类，设置背景色*/
     document.getElementsByTagName("body")[0].className="grey-bg";
+    this.get_user_info(function(response){
+      if (response.data.error_code === 0 ) {
+        let redirect = decodeURIComponent(that.$route.query.redirect || '/item/index');
+        that.$router.replace({
+          path: redirect
+        });
+      }
+    });
   },
   beforeDestroy(){
     /*去掉添加的背景色*/