From 23371d4433a850caa2a65ef0d68ead40e504d74f Mon Sep 17 00:00:00 2001 From: tim Date: Fri, 22 Aug 2025 22:09:41 +0800 Subject: [PATCH] =?UTF-8?q?Revert=20"fix:=20=E5=90=8C=E6=BA=90=E5=86=85?= =?UTF-8?q?=E5=B5=8C"?= MIME-Version: 1.0 Content-Type: text/plain; charset=UTF-8 Content-Transfer-Encoding: 8bit This reverts commit e05d65cf499e41eec2d99a98fe6eb05230bcb32e. --- backend/src/main/java/com/openisle/config/SecurityConfig.java | 3 +-- 1 file changed, 1 insertion(+), 2 deletions(-) diff --git a/backend/src/main/java/com/openisle/config/SecurityConfig.java b/backend/src/main/java/com/openisle/config/SecurityConfig.java index b0047b306..9f654427e 100644 --- a/backend/src/main/java/com/openisle/config/SecurityConfig.java +++ b/backend/src/main/java/com/openisle/config/SecurityConfig.java @@ -100,8 +100,7 @@ public class SecurityConfig { public SecurityFilterChain filterChain(HttpSecurity http) throws Exception { http.csrf(csrf -> csrf.disable()) .cors(Customizer.withDefaults()) // 让 Spring 自带 CorsFilter 处理预检 - .headers(h -> h.frameOptions(f -> f.sameOrigin())) - .sessionManagement(sm -> sm.sessionCreationPolicy(SessionCreationPolicy.STATELESS)) + .sessionManagement(sm -> sm.sessionCreationPolicy(SessionCreationPolicy.STATELESS)) .exceptionHandling(eh -> eh.accessDeniedHandler(customAccessDeniedHandler)) .authorizeHttpRequests(auth -> auth .requestMatchers(HttpMethod.OPTIONS, "/**").permitAll()