From bc43681f185af1edf833cf6c94833cb1cdd44a8e Mon Sep 17 00:00:00 2001
From: xiaoyong931011 <15274802129@163.com>
Date: Thu, 07 Jul 2022 17:42:18 +0800
Subject: [PATCH] 20220606

---
 src/main/java/com/xcong/farmer/cms/configurations/security/WebSecurityConfig.java |   15 ++++++++++++++-
 1 files changed, 14 insertions(+), 1 deletions(-)

diff --git a/src/main/java/com/xcong/farmer/cms/configurations/security/WebSecurityConfig.java b/src/main/java/com/xcong/farmer/cms/configurations/security/WebSecurityConfig.java
index 0fe9e94..6e4ae50 100644
--- a/src/main/java/com/xcong/farmer/cms/configurations/security/WebSecurityConfig.java
+++ b/src/main/java/com/xcong/farmer/cms/configurations/security/WebSecurityConfig.java
@@ -1,6 +1,8 @@
 package com.xcong.farmer.cms.configurations.security;
 
+import com.xcong.farmer.cms.configurations.WebMvcConfig;
 import lombok.extern.slf4j.Slf4j;
+import org.springframework.boot.autoconfigure.AutoConfigureAfter;
 import org.springframework.context.annotation.Bean;
 import org.springframework.context.annotation.Configuration;
 import org.springframework.http.HttpMethod;
@@ -22,6 +24,7 @@
  * @date 2020-05-11
  **/
 @Slf4j
+@AutoConfigureAfter(WebMvcConfig.class)
 @Configuration
 @EnableWebSecurity
 @EnableGlobalMethodSecurity(prePostEnabled = true)
@@ -29,6 +32,7 @@
 
     @Resource
     private UserDetailsService userDetailsService;
+
 
     @Override
     protected void configure(HttpSecurity http) throws Exception {
@@ -39,10 +43,19 @@
                 .authorizeRequests()
                 .antMatchers(HttpMethod.OPTIONS, "/**").permitAll()
                 .antMatchers("/login").permitAll()
+                .antMatchers("/cms/**").permitAll()
+                .antMatchers("/html").permitAll()
                 .antMatchers("/swagger**/**").permitAll()
                 .antMatchers("/webjars/**").permitAll()
                 .antMatchers("/v2/**").permitAll()
-                .antMatchers("/api/common/**").permitAll()
+                .antMatchers("/api/common/login").permitAll()
+                .antMatchers("/api/common/captcha").permitAll()
+                .antMatchers("/api/common/doUpload").permitAll()
+                .antMatchers("/api/common/uploadFile").permitAll()
+                .antMatchers("/api/messageBoard/addMessage").permitAll()
+                .antMatchers("/api/article/webArticleInPage").permitAll()
+                .antMatchers("/api/column/webColumnInList").permitAll()
+                .antMatchers("/image/**").permitAll()
                 .anyRequest().authenticated()
                 .and().apply(securityConfiguereAdapter());
     }

--
Gitblit v1.9.1