fix: 移除错误的 AppAuthMiddleware add_middleware(类定义在后面)
Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>
This commit is contained in:
@@ -400,9 +400,6 @@ class SecurityHeadersMiddleware:
|
||||
|
||||
app.add_middleware(SecurityHeadersMiddleware)
|
||||
|
||||
# App auth: protect /app/ HTML pages behind refresh-cookie (before JWT/DB/CORS)
|
||||
app.add_middleware(AppAuthMiddleware)
|
||||
|
||||
# F2a-10 / F2d-02: global JWT gate for all /api/* (inside DbSession — uses request.state.db)
|
||||
app.add_middleware(JwtAuthMiddleware)
|
||||
|
||||
|
||||
Reference in New Issue
Block a user