From 7febe9dddced886c535453054ed2215fbe0a48de Mon Sep 17 00:00:00 2001
From: laodaming <11058467+laudamine@user.noreply.gitee.com>
Date: Mon, 20 Nov 2023 14:25:12 +0800
Subject: [PATCH] fix

---
 .../internal/logic/addldaporganizationmemberlogic.go         | 5 +++++
 .../internal/logic/removeldaporganizationmemberlogic.go      | 5 +++++
 2 files changed, 10 insertions(+)

diff --git a/server/ldap-admin/internal/logic/addldaporganizationmemberlogic.go b/server/ldap-admin/internal/logic/addldaporganizationmemberlogic.go
index fd293f89..dca7b025 100644
--- a/server/ldap-admin/internal/logic/addldaporganizationmemberlogic.go
+++ b/server/ldap-admin/internal/logic/addldaporganizationmemberlogic.go
@@ -3,6 +3,7 @@ package logic
 import (
 	"fusenapi/utils/auth"
 	"fusenapi/utils/basic"
+	"fusenapi/utils/email"
 	"fusenapi/utils/ldap_lib"
 	"strings"
 
@@ -41,6 +42,10 @@ func (l *AddLdapOrganizationMemberLogic) AddLdapOrganizationMember(req *types.Ad
 	if len(req.UserDN) <= 3 || req.UserDN[:3] != "cn=" {
 		return resp.SetStatusWithMessage(basic.CodeRequestParamsErr, "无效的用户DN")
 	}
+	cnEmail := strings.Split(req.UserDN, ",")[0][3:]
+	if !email.IsEmailValid(cnEmail) {
+		return resp.SetStatusWithMessage(basic.CodeRequestParamsErr, "错误的用户cn")
+	}
 	ldapServer := ldap_lib.NewLdap(l.svcCtx.Ldap, l.svcCtx.Config.Ldap.BaseDN, l.svcCtx.Config.Ldap.RootDN)
 	err := ldapServer.AddUserToOrganization(req.OrganizationDN, req.UserDN)
 	if err != nil {
diff --git a/server/ldap-admin/internal/logic/removeldaporganizationmemberlogic.go b/server/ldap-admin/internal/logic/removeldaporganizationmemberlogic.go
index dee25ad8..4d1bac6b 100644
--- a/server/ldap-admin/internal/logic/removeldaporganizationmemberlogic.go
+++ b/server/ldap-admin/internal/logic/removeldaporganizationmemberlogic.go
@@ -3,6 +3,7 @@ package logic
 import (
 	"fusenapi/utils/auth"
 	"fusenapi/utils/basic"
+	"fusenapi/utils/email"
 	"fusenapi/utils/ldap_lib"
 	"strings"
 
@@ -41,6 +42,10 @@ func (l *RemoveLdapOrganizationMemberLogic) RemoveLdapOrganizationMember(req *ty
 	if len(req.UserDN) <= 3 || req.UserDN[:3] != "cn=" {
 		return resp.SetStatusWithMessage(basic.CodeRequestParamsErr, "参数错误，无效的用户DN")
 	}
+	cnEmail := strings.Split(req.UserDN, ",")[0][3:]
+	if !email.IsEmailValid(cnEmail) {
+		return resp.SetStatusWithMessage(basic.CodeRequestParamsErr, "错误的用户cn")
+	}
 	ldapServer := ldap_lib.NewLdap(l.svcCtx.Ldap, l.svcCtx.Config.Ldap.BaseDN, l.svcCtx.Config.Ldap.RootDN)
 	err := ldapServer.RemoveUserFromOrganization(req.OrganizationDN, req.UserDN)
 	if err != nil {