feature: 关闭csrf

04f01a5f · 郝聪敏 · 72afd0c4 · 04f01a5f · 04f01a5f
Commit 04f01a5f authored Mar 02, 2021 by 郝聪敏
Hide whitespace changes
Inline Side-by-side

Showing with 8 additions and 2 deletions

http.service.ts app/web/service/http.service.ts +2 -2

config.default.ts config/config.default.ts +6 -0

No files found.
--- a/app/web/service/http.service.ts
+++ b/app/web/service/http.service.ts
@@ -25,8 +25,8 @@ const pending = {};
 let reqNum = 0;
 axios.defaults.baseURL = basicConfig.apiHost;
 axios.defaults.timeout = 30000;
-axios.defaults.xsrfHeaderName = 'x-csrf-token';
+// axios.defaults.xsrfHeaderName = 'x-csrf-token';
-axios.defaults.xsrfCookieName = 'csrfToken';
+// axios.defaults.xsrfCookieName = 'csrfToken';
 const wait = async seconds => new Promise(resolve => setTimeout(resolve, seconds));

--- a/config/config.default.ts
+++ b/config/config.default.ts
@@ -41,5 +41,11 @@ export default (appInfo: EggAppConfig) => {
    allowMethods: 'GET,HEAD,PUT,POST,DELETE,PATCH'
  };
+  config.security = {
+    csrf: {
+      enable: false
+    }
+  };
  return config;
 };