From df535df52784f624ad1ec69d696c4a565441ed48 Mon Sep 17 00:00:00 2001
From: Tomas <tomasysh@gmail.com>
Date: 星期四, 20 七月 2023 20:08:48 +0800
Subject: [PATCH] Merge remote-tracking branch 'origin/2023_CR' into 2023_CR
---
pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java | 7 ++++---
1 files changed, 4 insertions(+), 3 deletions(-)
diff --git a/pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java b/pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java
index 45c2e6d..b9d3baf 100644
--- a/pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java
+++ b/pamapi/src/main/java/com/pollex/pam/config/SecurityConfiguration.java
@@ -1,6 +1,6 @@
package com.pollex.pam.config;
-import com.pollex.pam.security.*;
+import com.pollex.pam.business.security.AuthoritiesConstants;
import com.pollex.pam.security.jwt.*;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Import;
@@ -75,9 +75,10 @@
.deny()
.and()
.sessionManagement()
- .sessionCreationPolicy(SessionCreationPolicy.STATELESS)
+ .sessionCreationPolicy(SessionCreationPolicy.IF_REQUIRED)
.and()
.authorizeRequests()
+ .antMatchers("/api/access_analysis/**").permitAll()
.antMatchers("/api/authenticate").permitAll()
.antMatchers("/api/register").permitAll()
.antMatchers("/api/activate").permitAll()
@@ -85,7 +86,7 @@
.antMatchers("/api/test/sendMsg/**").permitAll()
.antMatchers("/api/otp/**").permitAll()
.antMatchers("/api/login/validate/**").permitAll()
- .antMatchers("/api/eService/authenticate").permitAll()
+ .antMatchers("/api/eService/authenticate/**").permitAll()
.antMatchers("/api/account/reset-password/init").permitAll()
.antMatchers("/api/account/reset-password/finish").permitAll()
.antMatchers("/api/consultant/recommend").permitAll()
--
Gitblit v1.8.0