src/main/java/com/xcong/excoin/configurations/security/CustomAccessDeniedHandler.java
@@ -19,7 +19,7 @@ public class CustomAccessDeniedHandler implements AccessDeniedHandler { @Override public void handle(HttpServletRequest httpServletRequest, HttpServletResponse httpServletResponse, AccessDeniedException e) throws IOException, ServletException { Result result = Result.loginFail("fail"); Result result = Result.loginFail("Forbidden"); httpServletResponse.getWriter().write(new ObjectMapper().writeValueAsString(result)); httpServletResponse.setStatus(HttpServletResponse.SC_FORBIDDEN); } src/main/java/com/xcong/excoin/configurations/security/CustomAuthenticationEntryPoint.java
@@ -6,6 +6,7 @@ import org.springframework.security.web.AuthenticationEntryPoint; import javax.servlet.ServletException; import javax.servlet.http.HttpServlet; import javax.servlet.http.HttpServletRequest; import javax.servlet.http.HttpServletResponse; import java.io.IOException; @@ -18,9 +19,10 @@ @Override public void commence(HttpServletRequest httpServletRequest, HttpServletResponse response, AuthenticationException e) throws IOException, ServletException { Result result = Result.loginFail("fail"); Result result = Result.loginFail("Unauthorized"); response.setCharacterEncoding("UTF-8"); response.setContentType("application/json; charset=utf-8"); response.getWriter().write(new ObjectMapper().writeValueAsString(result)); response.setStatus(HttpServletResponse.SC_UNAUTHORIZED); } } src/main/java/com/xcong/excoin/configurations/security/WebSecurityConfig.java
@@ -43,6 +43,9 @@ .antMatchers("/swagger**/**").permitAll() .antMatchers("/webjars/**").permitAll() .antMatchers("/v2/**").permitAll() .antMatchers("/api/symbols/**").permitAll() .antMatchers("/common/**").permitAll() .antMatchers("/api/exchange/**").permitAll() .anyRequest().authenticated() .and().apply(securityConfiguereAdapter()); }
