fix: 修改sercurity的放行策略

2022-06-21 14:34:34 +08:00 · 2022-06-21 14:34:34 +08:00 · b98c015abc
commit b98c015abc
parent 8e06463f12
1 changed files with 3 additions and 2 deletions
--- a/ym-admin/src/main/java/com/cnbm/admin/config/SecurityConfig.java
+++ b/ym-admin/src/main/java/com/cnbm/admin/config/SecurityConfig.java
@ -48,10 +48,11 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter {
                .and()
                .authorizeRequests()
                // 对于登录接口 允许匿名访问
-                .antMatchers("/login","/swagger/**","/v2/api-docs",
+                .antMatchers("/login","/swagger/**","/v2/**",
                        "/doc.html",
                        "/swagger-resources/**",
-                        "/swagger-ui/**").anonymous()
+                        "/swagger-ui/**",
+                        "/webjars/**").anonymous()
 //                .antMatchers("/testCors").hasAuthority("system:dept:list222")
                // 除上面外的所有请求全部需要鉴权认证
                .anyRequest().authenticated();