|
|
@@ -26,12 +26,14 @@ public class ResourceServerConfig extends ResourceServerConfigurerAdapter {
|
|
|
@Override
|
|
|
public void configure(HttpSecurity http) throws Exception {
|
|
|
http.csrf().disable().exceptionHandling().accessDeniedHandler(baseAccessDeniedHandler).authenticationEntryPoint(baseAuthenticationEntryPoint).and()
|
|
|
- .authorizeRequests().antMatchers(
|
|
|
+ .authorizeRequests()
|
|
|
+ .antMatchers("/open/**", "/*/open/**").permitAll()
|
|
|
+ .antMatchers(
|
|
|
"/task/**",
|
|
|
"/user/updatePassword",
|
|
|
"/user/noAuth/queryUserByPhone",
|
|
|
"/user/queryUserByPhone",
|
|
|
- "/user/add", "/open/**",
|
|
|
+ "/user/add",
|
|
|
"/user/queryUserById/*","/user/getTenantByClient").hasIpAddress("0.0.0.0/0")
|
|
|
.anyRequest().authenticated().and().httpBasic();
|
|
|
}
|
