|
|
@@ -99,9 +99,9 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter
|
|
|
.sessionManagement().sessionCreationPolicy(SessionCreationPolicy.STATELESS).and()
|
|
|
// 过滤请求
|
|
|
.authorizeRequests()
|
|
|
- // 对于登录login 注册register 验证码captchaImage 允许匿名访问
|
|
|
- .antMatchers("/chat/upload/**","/login", "/register", "/captchaImage","/checkIsNeedCheck","/getWechatQrCode","/checkWechatScan","/callback").anonymous()
|
|
|
- .antMatchers("/company/login", "/company/register", "/company/captchaImage").anonymous()
|
|
|
+ // 对于登录login 注册register 验证码captchaImage 允许所有用户访问(包括已认证用户)
|
|
|
+ .antMatchers("/chat/upload/**","/login", "/register", "/captchaImage","/checkIsNeedCheck","/getWechatQrCode","/checkWechatScan","/callback").permitAll()
|
|
|
+ .antMatchers("/company/login", "/company/register", "/company/captchaImage").permitAll()
|
|
|
.antMatchers(
|
|
|
HttpMethod.GET,
|
|
|
"/",
|
|
|
@@ -111,44 +111,44 @@ public class SecurityConfig extends WebSecurityConfigurerAdapter
|
|
|
"/**/*.js",
|
|
|
"/profile/**"
|
|
|
).permitAll()
|
|
|
- .antMatchers("/test").anonymous()
|
|
|
- .antMatchers("**/callerResult").anonymous()
|
|
|
- .antMatchers("/qw/getJsapiTicket/**").anonymous()
|
|
|
- .antMatchers("/msg/**").anonymous()
|
|
|
- .antMatchers("/baiduBack/**").anonymous()
|
|
|
- .antMatchers("/msg/**/**").anonymous()
|
|
|
- .antMatchers("/msg").anonymous()
|
|
|
- .antMatchers("/common/getId**").anonymous()
|
|
|
- .antMatchers("/common/uploadOSS**").anonymous()
|
|
|
- .antMatchers("/company/user/common/uploadOSS").anonymous()
|
|
|
- .antMatchers("/pay/wxPay/payNotify**").anonymous()
|
|
|
- .antMatchers("/common/uploadWang**").anonymous()
|
|
|
- .antMatchers("/common/download**").anonymous()
|
|
|
- .antMatchers("/common/test").anonymous()
|
|
|
- .antMatchers("/common/download/resource**").anonymous()
|
|
|
- .antMatchers("/swagger-ui.html").anonymous()
|
|
|
- .antMatchers("/swagger-resources/**").anonymous()
|
|
|
- .antMatchers("/webjars/**").anonymous()
|
|
|
- .antMatchers("/*/api-docs").anonymous()
|
|
|
- .antMatchers("/druid/**").anonymous()
|
|
|
- .antMatchers("/qw/data/**").anonymous()
|
|
|
- .antMatchers("/qw/user/selectCloudByCompany").anonymous()
|
|
|
+ .antMatchers("/test").permitAll()
|
|
|
+ .antMatchers("**/callerResult").permitAll()
|
|
|
+ .antMatchers("/qw/getJsapiTicket/**").permitAll()
|
|
|
+ .antMatchers("/msg/**").permitAll()
|
|
|
+ .antMatchers("/baiduBack/**").permitAll()
|
|
|
+ .antMatchers("/msg/**/**").permitAll()
|
|
|
+ .antMatchers("/msg").permitAll()
|
|
|
+ .antMatchers("/common/getId**").permitAll()
|
|
|
+ .antMatchers("/common/uploadOSS**").permitAll()
|
|
|
+ .antMatchers("/company/user/common/uploadOSS").permitAll()
|
|
|
+ .antMatchers("/pay/wxPay/payNotify**").permitAll()
|
|
|
+ .antMatchers("/common/uploadWang**").permitAll()
|
|
|
+ .antMatchers("/common/download**").permitAll()
|
|
|
+ .antMatchers("/common/test").permitAll()
|
|
|
+ .antMatchers("/common/download/resource**").permitAll()
|
|
|
+ .antMatchers("/swagger-ui.html").permitAll()
|
|
|
+ .antMatchers("/swagger-resources/**").permitAll()
|
|
|
+ .antMatchers("/webjars/**").permitAll()
|
|
|
+ .antMatchers("/*/api-docs").permitAll()
|
|
|
+ .antMatchers("/druid/**").permitAll()
|
|
|
+ .antMatchers("/qw/data/**").permitAll()
|
|
|
+ .antMatchers("/qw/user/selectCloudByCompany").permitAll()
|
|
|
.antMatchers("/system/config/getConfigByKey/his.adminUi.config").permitAll()
|
|
|
- .antMatchers("/live/LiveMixLiuTestOpen/**").anonymous()
|
|
|
- .antMatchers("/company/companyVoiceRobotic/callerResult4EasyCall").anonymous()
|
|
|
+ .antMatchers("/live/LiveMixLiuTestOpen/**").permitAll()
|
|
|
+ .antMatchers("/company/companyVoiceRobotic/callerResult4EasyCall").permitAll()
|
|
|
.antMatchers("/companyWorkflow/externalApi/page").permitAll()
|
|
|
- .antMatchers("/his/data/endFollow/*").anonymous()
|
|
|
- .antMatchers("/his/data/end/*").anonymous()
|
|
|
- .antMatchers("/his/data/addCF/*").anonymous()
|
|
|
- .antMatchers("/his/data/addCom/*").anonymous()
|
|
|
- .antMatchers("/his/data/testSendSub/*").anonymous()
|
|
|
- .antMatchers("/his/data/test/*").anonymous()
|
|
|
- .antMatchers("/his/data/Follow/*").anonymous()
|
|
|
- .antMatchers("/his/pay/*").anonymous()
|
|
|
- .antMatchers("/huFu/*").anonymous()
|
|
|
- .antMatchers("/tzPay/*").anonymous()
|
|
|
- .antMatchers("/his/storeOrder/saveStatus").anonymous()
|
|
|
- .antMatchers("**/errorLogUpload").anonymous()
|
|
|
+ .antMatchers("/his/data/endFollow/*").permitAll()
|
|
|
+ .antMatchers("/his/data/end/*").permitAll()
|
|
|
+ .antMatchers("/his/data/addCF/*").permitAll()
|
|
|
+ .antMatchers("/his/data/addCom/*").permitAll()
|
|
|
+ .antMatchers("/his/data/testSendSub/*").permitAll()
|
|
|
+ .antMatchers("/his/data/test/*").permitAll()
|
|
|
+ .antMatchers("/his/data/Follow/*").permitAll()
|
|
|
+ .antMatchers("/his/pay/*").permitAll()
|
|
|
+ .antMatchers("/huFu/*").permitAll()
|
|
|
+ .antMatchers("/tzPay/*").permitAll()
|
|
|
+ .antMatchers("/his/storeOrder/saveStatus").permitAll()
|
|
|
+ .antMatchers("**/errorLogUpload").permitAll()
|
|
|
// 除上面外的所有请求全部需要鉴权认证
|
|
|
.anyRequest().authenticated()
|
|
|
.and()
|
