update

src/main/java/com/ym/mec/collectfee/entity/MecCourse.java

@@ -25,7 +25,7 @@ public class MecCourse {
 	private Integer courseId;
 	
 	/**  */
-	private String subName;
+	private String subNames;
 	
 	/**  */
 	private Integer studentId;
@@ -105,15 +105,15 @@ public class MecCourse {
 	public Integer getCourseId(){
 		return this.courseId;
 	}
-			
-	public void setSubName(String subName){
-		this.subName = subName;
+
+	public String getSubNames() {
+		return subNames;
 	}
-	
-	public String getSubName(){
-		return this.subName;
+
+	public void setSubNames(String subNames) {
+		this.subNames = subNames;
 	}
-			
+
 	public void setStudentId(Integer studentId){
 		this.studentId = studentId;
 	}

src/main/java/com/ym/mec/collectfee/filter/XssFilter.java

@@ -0,0 +1,26 @@
+package com.ym.mec.collectfee.filter;
+
+import java.io.IOException;
+
+import javax.servlet.Filter;
+import javax.servlet.FilterChain;
+import javax.servlet.ServletException;
+import javax.servlet.ServletRequest;
+import javax.servlet.ServletResponse;
+import javax.servlet.annotation.WebFilter;
+
+import org.springframework.core.annotation.Order;
+
+@Order(1)
+// 执行的顺序，值越小，越先执行
+@WebFilter(urlPatterns = "/*")
+public class XssFilter implements Filter {
+
+	@Override
+	public void doFilter(ServletRequest request, ServletResponse response, FilterChain chain) throws IOException, ServletException {
+		System.out.println("******************XssFilter ****************");
+
+		chain.doFilter(request, response);
+	}
+
+}

src/main/java/com/ym/mec/collectfee/service/impl/ApplyInfoServiceImpl.java

@@ -274,9 +274,10 @@ public class ApplyInfoServiceImpl extends BaseServiceImpl<Integer, ApplyInfo> im
 			xs.autodetectAnnotations(true);
 			xs.toXML(requestParamBean,writer);
 			body = HttpUtil.postXmlData(writer.toString(), url);
-			String errCode = body.substring(body.indexOf("<errCode>") + 9, body.indexOf("</errCode>"));
+			body = body.substring(body.indexOf("<errCode>") + 9, body.indexOf("</errCode>"));
 //			body = new String(CDesECB.decode(key,body.getBytes()));
-			if(!StringUtils.equals(errCode,"0")){
+//			body = CDesECB.decodeValue(key,body);
+			if(!StringUtils.equals(body,"0")){
 				return false;
 			}
 			return true;

src/main/java/com/ym/mec/collectfee/utils/CDesECB.java

@@ -68,4 +68,37 @@ public class CDesECB
             throw new Exception(e);
         }
     }
+
+    /**
+     * 获取编码后的值
+     *
+     * @param key
+     * @param data
+     * @return
+     * @throws Exception
+     */
+    public static String decodeValue(String key, String data)
+    {
+        byte[] datas;
+        String value = null;
+        try
+        {
+            if (System.getProperty("os.name") != null
+                    && (System.getProperty("os.name").equalsIgnoreCase("sunos") || System
+                    .getProperty("os.name").equalsIgnoreCase("linux")))
+            {
+                datas = decode(key, Base64.getDecoder().decode(data));
+            }
+            else
+            {
+                datas = decode(key, Base64.getDecoder().decode(data));
+            }
+            value = new String(datas);
+        }
+        catch (Exception e)
+        {
+            value = "";
+        }
+        return value;
+    }
 }