xfy 0be0719fdb 将 session cookie 改为后端 HttpOnly 设置 ...

- login 通过 Set-Cookie 响应头设置 HttpOnly cookie
- get_current_user 从请求 Cookie header 读取 token，匹配具体 session
- logout 通过 Set-Cookie 清除 cookie，并删除对应 session
- 移除前端 document.cookie 操作代码

Co-Authored-By: Claude Opus 4.7 (1M context) <noreply@anthropic.com>

2026-05-26 23:54:58 +08:00

..

auth.rs

将 session cookie 改为后端 HttpOnly 设置

2026-05-26 23:54:58 +08:00

mod.rs

US-003: 认证 API (Server Functions)

2026-05-25 16:21:11 +08:00