diff --git a/src/main/java/com/uin/config/SpringSecurityConfig.java b/src/main/java/com/uin/config/SpringSecurityConfig.java
index 5e7e3bd..d8f0476 100644
--- a/src/main/java/com/uin/config/SpringSecurityConfig.java
+++ b/src/main/java/com/uin/config/SpringSecurityConfig.java
@@ -54,7 +54,8 @@ protected void configure(HttpSecurity http) throws Exception {
.passwordParameter("pwd")
//2. 必须和表单的提交是一样的
- .loginProcessingUrl("/login")
+ //.loginProcessingUrl("/login")
+ .loginProcessingUrl("/showLogin")
//自定义登陆页面
.loginPage("/login.html")
@@ -131,7 +132,7 @@ protected void configure(HttpSecurity http) throws Exception {
//关闭防火墙
- http.csrf().disable();
+ //http.csrf().disable();
//自定义403 权限异常
diff --git a/src/main/java/com/uin/controller/LoginController.java b/src/main/java/com/uin/controller/LoginController.java
index 9167671..6ab6f69 100644
--- a/src/main/java/com/uin/controller/LoginController.java
+++ b/src/main/java/com/uin/controller/LoginController.java
@@ -90,4 +90,16 @@ public String toError() {
public String demo() {
return "demo";
}
+
+ /**
+ * CSRF的页面跳转
+ *
+ * @return java.lang.String
+ * @author wanglufei
+ * @date 2022/4/11 4:35 PM
+ */
+ @RequestMapping("showLogin")
+ public String showLogin() {
+ return "login";
+ }
}
diff --git a/src/main/resources/templates/login.html b/src/main/resources/templates/login.html
index 2c5ff41..46aea1b 100644
--- a/src/main/resources/templates/login.html
+++ b/src/main/resources/templates/login.html
@@ -1,7 +1,6 @@
+ xmlns:th="http://www.thymeleaf.org">
login
@@ -9,6 +8,7 @@