fix: 防止 Security 影响 Cors 配置

2025-12-21 03:04:40 +08:00
parent cafd2708b4
commit 9395d8d2c9
1 changed files with 16 additions and 18 deletions
--- a/src/main/java/icu/sunway/ai_spring_example/Config/SecurityConfig.java
+++ b/src/main/java/icu/sunway/ai_spring_example/Config/SecurityConfig.java
@@ -14,9 +14,6 @@ public class SecurityConfig {
        @Bean
        public SecurityFilterChain filterChain(HttpSecurity http) throws Exception {
                http
-                // 启用跨域配置
-                .cors(cors -> cors.configurationSource(
-                        request -> new org.springframework.web.cors.CorsConfiguration().applyPermitDefaultValues()))
                                // 禁用默认的登录表单和HTTP基本认证
                                .formLogin(form -> form.disable())
                                .httpBasic(basic -> basic.disable())
@@ -26,7 +23,8 @@ public class SecurityConfig {
                                // 禁用CSRF保护
                                .csrf(csrf -> csrf.disable())
                                // 设置会话创建策略为无状态
-                .sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS));
+                                .sessionManagement(session -> session
+                                                .sessionCreationPolicy(SessionCreationPolicy.STATELESS));

                return http.build();
        }