From 6c645d811f0c81eca814d56fa651e9088ce6fc13 Mon Sep 17 00:00:00 2001
From: Jack <jack.su@pollex.com.tw>
Date: 星期三, 22 十二月 2021 21:17:22 +0800
Subject: [PATCH] [UPDATE] 調整編輯顧問API,改為使用agentNo查出欲修改的資料
---
pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java | 6 +++++-
1 files changed, 5 insertions(+), 1 deletions(-)
diff --git a/pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java b/pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java
index 3638cd4..6fca6d3 100644
--- a/pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java
+++ b/pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java
@@ -69,7 +69,7 @@
.and()
.referrerPolicy(ReferrerPolicyHeaderWriter.ReferrerPolicy.STRICT_ORIGIN_WHEN_CROSS_ORIGIN)
.and()
- .permissionsPolicy().policy("camera=(), fullscreen=(self), geolocation=(), gyroscope=(), magnetometer=(), microphone=(), midi=(), payment=(), sync-xhr=()")
+ .featurePolicy("geolocation 'none'; midi 'none'; sync-xhr 'none'; microphone 'none'; camera 'none'; magnetometer 'none'; gyroscope 'none'; fullscreen 'self'; payment 'none'")
.and()
.frameOptions()
.deny()
@@ -82,12 +82,16 @@
.antMatchers("/api/register").permitAll()
.antMatchers("/api/activate").permitAll()
.antMatchers("/api/testLogin/**").permitAll()
+ .antMatchers("/api/otp/**").permitAll()
+ .antMatchers("/api/login/validate/**").permitAll()
+ .antMatchers("/api/eService/authenticate").permitAll()
.antMatchers("/api/account/reset-password/init").permitAll()
.antMatchers("/api/account/reset-password/finish").permitAll()
.antMatchers("/api/consultant/recommend").permitAll()
.antMatchers("/api/consultant/detail").permitAll()
.antMatchers("/api/consultant/fastQuery").permitAll()
.antMatchers("/api/consultant/strictQuery").permitAll()
+ .antMatchers("/api/consultant/avatar/**").permitAll()
.antMatchers("/api/admin/**").hasAuthority(AuthoritiesConstants.ADMIN)
.antMatchers("/api/**").authenticated()
.antMatchers("/websocket/**").authenticated()
--
Gitblit v1.8.0