aba file

src/main/java/au/com/royalpay/payment/manage/apps/core/impls/AppPermissionSupportImpl.java

@@ -19,7 +19,6 @@ import javax.annotation.Resource;
 public class AppPermissionSupportImpl implements AppPermissionSupport {
     @Resource
     private SysAppsMapper sysAppsMapper;
-    private final String signTemplate = "%s&%s&%s&%s&%s";
     private Logger logger = LoggerFactory.getLogger(getClass());
 
     @Override
@@ -40,7 +39,7 @@ public class AppPermissionSupportImpl implements AppPermissionSupport {
             throw new ForbiddenException("Timeout");
         }
         String auth = app.getString("auth_code");
-        String str = String.format(signTemplate, appid, auth, timestamp, requestUri, ip);
+        String str = String.join("&", appid, auth, timestamp + "", requestUri);
         logger.debug("sso-str before hash:{}", str);
         String hash = DigestUtils.sha256Hex(str).toLowerCase();
         if (!StringUtils.equals(hash, sign)) {