|
|
@@ -70,7 +70,7 @@ public class WebSecurityConfig extends WebSecurityConfigurerAdapter {
|
|
|
// 请求授权
|
|
|
.authorizeRequests()// 不需要权限认证的url
|
|
|
.antMatchers("/usernameLogin","/smsLogin", "/refreshToken",
|
|
|
- "/getQRLoginCode","/pollingQRLoginCode","/v2/api-docs").permitAll()// 任何请求
|
|
|
+ "/getQRLoginCode","/pollingQRLoginCode","/v2/api-docs","/user/getTenantByClient").permitAll()// 任何请求
|
|
|
.anyRequest()// 需要身份认证
|
|
|
.authenticated().and()// 关闭跨站请求防护
|
|
|
.csrf().disable();
|
