renren-admin/src/main/java/io/renren/modules/security/oauth2/Oauth2Filter.java

@@ -237,9 +237,9 @@ public class Oauth2Filter extends AuthenticatingFilter {
                         Result<Map> result = sysUserTokenService.createToken(sysUserEntity.getId());
                         Object token = result.getData().get(Constant.TOKEN_HEADER);
                         String currentToken = (String) token;
-//                        Cookie cookie = new Cookie(Constant.TOKEN_HEADER, currentToken);
-//                        cookie.setPath("/");
-//                        response.addCookie(cookie);
+                        Cookie cookie = new Cookie(Constant.TOKEN_HEADER, currentToken);
+                        cookie.setPath("/");
+                        response.addCookie(cookie);
                         response.addHeader(Constant.TOKEN_HEADER, currentToken);
                         //回调不涉及其他页面回调，先写死回调首页
                         String removeCreditParame = "http://" + urlBuilder.getHost() + ":" + urlBuilder.getPort() + "/#/home";
@@ -267,9 +267,9 @@ public class Oauth2Filter extends AuthenticatingFilter {
                 Result<Map> result = sysUserTokenService.createToken(sysUserEntity.getId());
                 Object token = result.getData().get(Constant.TOKEN_HEADER);
                 String currentToken = (String) token;
-//                Cookie cookie = new Cookie(Constant.TOKEN_HEADER, currentToken);
-//                cookie.setPath("/");
-//                response.addCookie(cookie);
+                Cookie cookie = new Cookie(Constant.TOKEN_HEADER, currentToken);
+                cookie.setPath("/");
+                response.addCookie(cookie);
                 response.addHeader(Constant.TOKEN_HEADER, currentToken);
                 //去掉凭证参数
                 String removeCreditParame = ssoValidator.removeCreditParame(requestUri);