From fe0f308e541c4b08ed84dee410fa1772205c950e Mon Sep 17 00:00:00 2001
From: liuweiwen <“529520975@qq.com>
Date: Fri, 3 Jan 2020 11:47:13 +0800
Subject: [PATCH] =?UTF-8?q?=E8=B4=A2=E5=8A=A1=E7=AE=A1=E7=90=86=E4=B8=8B?=
 =?UTF-8?q?=E7=9A=84ajax=E8=AF=B7=E6=B1=82=E4=B8=8D=E5=88=A4=E6=96=AD?=
 =?UTF-8?q?=E6=9D=83=E9=99=90?=
MIME-Version: 1.0
Content-Type: text/plain; charset=UTF-8
Content-Transfer-Encoding: 8bit

---
 Application/Admin/Controller/AdminController.class.php | 3 ++-
 1 file changed, 2 insertions(+), 1 deletion(-)

diff --git a/Application/Admin/Controller/AdminController.class.php b/Application/Admin/Controller/AdminController.class.php
index d62e3d01a..19d9b938c 100644
--- a/Application/Admin/Controller/AdminController.class.php
+++ b/Application/Admin/Controller/AdminController.class.php
@@ -48,7 +48,8 @@ class AdminController extends Controller {
             if ( false === $access ) {
                 $this->error('403:禁止访问');
             }elseif(null === $access ){
-                if(CONTROLLER_NAME !== "Ajax"){//ajax放行
+                $access_controller = ['Ajax', 'Finance', 'FinancePromote', 'PayChannel'];
+                if(!in_array(CONTROLLER_NAME, $access_controller)){//ajax放行
                     //检测访问权限
                     $rule  = strtolower(MODULE_NAME.'/'.CONTROLLER_NAME.'/'.ACTION_NAME);
                     if($rule == "admin/statistics/overview"){//第一级菜单单独判断