xiaomai fa656a8d02 refactor(auth): migrate fully to HTTP-only cookie sessions ...

Remove client-side token storage and Authorization header injection
Backend login now only returns user data, omitting the session token
Remove Authorization from backend CORS allowed headers
Clean up obsolete VITE_* environment variable fallbacks
Update Modal component to use Vue useId() instead of Math.random()

2026-05-06 17:15:46 +08:00

3.3 KiB

Raw Blame History

View Raw