fix: Enhance state check to include query parameter for session validation

2026-03-18 11:02:09 +00:00 · 2025-10-22 18:20:48 +08:00
parent b2a618b206
commit 06be56ef06
1 changed files with 2 additions and 1 deletions
--- a/apps/common/sdk/im/wecom/init.py
+++ b/apps/common/sdk/im/wecom/init.py
@@ -207,7 +207,8 @@ class WeComTool(object):

    def check_state(self, state, request=None):
        return cache.get(state) == self.WECOM_STATE_VALUE or \
-            request.session[self.WECOM_STATE_SESSION_KEY] == state
+            request.session.get(self.WECOM_STATE_SESSION_KEY) == state or \
+            request.GET.get('state') == state  # 在企业微信桌面端打开的话，重新创建了个 session，会导致 session 校验失败

    def wrap_redirect_url(self, next_url):
        params = {