Revert "fix: 同源内嵌"

This reverts commit e05d65cf49.
2026-02-18 21:10:57 +08:00 · 2025-08-22 22:09:41 +08:00
parent e05d65cf49
commit 23371d4433
1 changed files with 1 additions and 2 deletions
--- a/backend/src/main/java/com/openisle/config/SecurityConfig.java
+++ b/backend/src/main/java/com/openisle/config/SecurityConfig.java
@@ -100,8 +100,7 @@ public class SecurityConfig {
    public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
        http.csrf(csrf -> csrf.disable())
                .cors(Customizer.withDefaults())         // 让 Spring 自带 CorsFilter 处理预检
-                .headers(h -> h.frameOptions(f -> f.sameOrigin()))
-                .sessionManagement(sm -> sm.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
+            .sessionManagement(sm -> sm.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
            .exceptionHandling(eh -> eh.accessDeniedHandler(customAccessDeniedHandler))
            .authorizeHttpRequests(auth -> auth
                    .requestMatchers(HttpMethod.OPTIONS, "/**").permitAll()