我正在尝试在 Rails 5 API 中设置基本的基于会话的身份验证策略。
我认为我主要遇到配置混乱,因为每个请求都会生成一个新会话。
我已将 cookie 和 cookie 存储中间件添加回应用程序中
config/application.rb
class Application < Rails::Application
# Settings in config/environments/* take precedence over those specified here.
# Application configuration should go into files in config/initializers
# -- all .rb files in that directory are automatically loaded.
# Only loads a smaller set of middleware suitable for API only apps.
# Middleware like session, flash, cookies can be added back manually.
# Skip views, helpers and assets when generating a new …session ruby-on-rails session-store rails-api ruby-on-rails-5