💩 feat: 修改文件名

auth-api/pom.xml

@@ -7,7 +7,7 @@
         <version>0.0.1-SNAPSHOT</version>
     </parent>
 
-    <artifactId>auh-api</artifactId>
+    <artifactId>auth-api</artifactId>
     <packaging>jar</packaging>
 
     <name>auh-api</name>

auth-api/src/main/java/cn/bunny/services/controller/IndexController.java

@@ -24,7 +24,7 @@ public class IndexController {
     }
 
     @Operation(summary = "生成验证码", description = "生成验证码")
-    @GetMapping("public/check-code")
+    @GetMapping("/api/image/public/check-code")
     public ResponseEntity<byte[]> checkCode() {
         HttpHeaders headers = new HttpHeaders();
         headers.setContentType(MediaType.IMAGE_JPEG);

auth-api/src/main/resources/templates/index.html

@@ -88,7 +88,7 @@
     <div class="carousel slide" id="carouselExampleIndicators">
         <div class="carousel-inner">
             <div class="carousel-item active">
-                <img alt="验证码图片" class="d-block w-50" src="/public/checkCode" style="margin: 0 auto">
+                <img alt="验证码图片" class="d-block w-50" src="/api/image/public/check-code" style="margin: 0 auto">
             </div>
         </div>
     </div>

pom.xml

@@ -19,7 +19,7 @@
         <module>service</module>
         <module>dao</module>
         <module>auth-core</module>
-        <module>auh-api</module>
+        <module>auth-api</module>
     </modules>
 
     <properties>

service/src/main/java/cn/bunny/services/core/strategy/login/LoginContext.java

@@ -17,6 +17,7 @@ public class LoginContext {
         this.strategies = strategies;
     }
 
+
     /**
      * 执行登录策略
      * 根据情况判断 type 是否为空

service/src/main/java/cn/bunny/services/security/config/MethodSecurityConfig.java

@@ -13,7 +13,7 @@ import org.springframework.security.crypto.password.PasswordEncoder;
 
 @Configuration
 public class MethodSecurityConfig {
-    
+
     /**
      * 设置密码校验器
      *

service/src/main/java/cn/bunny/services/security/config/WebSecurityConfig.java

@@ -10,6 +10,7 @@ import org.springframework.security.config.annotation.method.configuration.Enabl
 import org.springframework.security.config.annotation.web.builders.HttpSecurity;
 import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
 import org.springframework.security.config.annotation.web.configurers.AbstractHttpConfigurer;
+import org.springframework.security.config.http.SessionCreationPolicy;
 import org.springframework.security.web.SecurityFilterChain;
 import org.springframework.security.web.util.matcher.RegexRequestMatcher;
 
@@ -46,7 +47,10 @@ public class WebSecurityConfig {
                 // 跨域访问权限，如果需要可以关闭后自己配置跨域访问
                 .cors(AbstractHttpConfigurer::disable)
                 // 前后端分离不需要---因为是无状态的
-                .sessionManagement(AbstractHttpConfigurer::disable)
+                // .sessionManagement(AbstractHttpConfigurer::disable)
+                .sessionManagement(session ->
+                        session.sessionCreationPolicy(SessionCreationPolicy.STATELESS)
+                )
                 // 前后端分离不需要---记住我
                 .rememberMe(AbstractHttpConfigurer::disable)
                 .authorizeHttpRequests(authorize -> authorize