接盘就是坑啊,坑坑不一样啊。
哈哈哈,但是接盘是提升治疗代码疑难杂症水平的经验积累
对于电商来说最重要的除了性能外就是安全性了。
如果安全性差的话就导致整个项目被恶意盗刷,接下来我就讲一下我遇到的一个坑Cause
前公司某员工调动,之前同事负责的一个虚拟账户活动页面交给我负责。
基本上就是一个简单的虚拟账户,账户可以通过签到,抽奖,购买的方式来获取。The accident started
其实我也非常的费解,为什么项目在别人手上运行的好好的,到了我手上还没开始
就已经出现了问题。老天是真的担心我学不会什么。这是我接到项目的第三天,项目
运行后,我通过后台发现。为什么有个用户会频繁的添加账户余额,而且都是一个值。
最后这个用户的余额达到了50000多,我们这里设置的1个就是一块,1:1,果不其然
用户马上用来兑换了一个苹果手机。坑爹啊。客服还给发出去了,我马上告诉了产品。an examination
Then after thinking about it, it must be a matter of opening the entrance.
Checked the check-in and the lottery. Rub
Sure, that is a good score to calculate jquery I passed directly to the background, the background got nothing to do, directly UPDATE.
modify
After I found out, there was no way, I went to modify, I made a change.
1. Backend: The score is calculated by the backend, and the interval frequency is set. Cannot refresh frequently
2. Front end: Sign-in is locked after clicking once. The lottery function waits for the background structure to be released before releasing the request. The purchase function jumps to the completion page.
result
This problem has been solved after the release.