remove session

spring5-auth/spring5-auth-client/src/main/java/com/yaozhitech/spring5/config/ShiroConfiguration.java

@@ -12,19 +12,19 @@ import org.apache.shiro.authc.pam.ModularRealmAuthenticator;
 import org.apache.shiro.mgt.SecurityManager;
 import org.apache.shiro.mgt.SessionStorageEvaluator;
 import org.apache.shiro.realm.Realm;
+import org.apache.shiro.session.mgt.DefaultSessionManager;
+import org.apache.shiro.session.mgt.SessionManager;
 import org.apache.shiro.spring.web.ShiroFilterFactoryBean;
 import org.apache.shiro.spring.web.config.ShiroFilterChainDefinition;
 import org.apache.shiro.web.mgt.DefaultWebSessionStorageEvaluator;
 import org.springframework.boot.web.servlet.FilterRegistrationBean;
 import org.springframework.context.annotation.Bean;
-import org.springframework.context.annotation.Configuration;
 
 import com.yaozhitech.spring5.filter.AnyRolesAuthorizationFilter;
 import com.yaozhitech.spring5.filter.JwtAuthFilter;
 import com.yaozhitech.spring5.jwt.JWTShiroRealm;
 import com.yaozhitech.spring5.service.UserService;
 
-@Configuration
 public abstract class ShiroConfiguration {
 	/**
 	 * 注册shiro的Filter，拦截请求
@@ -59,7 +59,7 @@ public abstract class ShiroConfiguration {
         sessionStorageEvaluator.setSessionStorageEnabled(false);
         return sessionStorageEvaluator;
     }
-
+    
     /**
           * 用于JWT token认证的realm
      */
@@ -72,6 +72,7 @@ public abstract class ShiroConfiguration {
     /**
           * 设置过滤器，将自定义的Filter加入
      */
+    @Bean
     public ShiroFilterFactoryBean shiroFilter(SecurityManager securityManager, UserService userService) {
     	ShiroFilterFactoryBean factoryBean = new ShiroFilterFactoryBean();
         factoryBean.setSecurityManager(securityManager);