new-ryc.git - Gitblit

			@@ -1,5 +1,7 @@
			package com.rongyichuang.config;

			import com.rongyichuang.auth.filter.JwtAuthenticationFilter;
			import org.springframework.beans.factory.annotation.Autowired;
			import org.springframework.context.annotation.Bean;
			import org.springframework.context.annotation.Configuration;
			import org.springframework.security.authentication.AuthenticationManager;
			@@ -11,6 +13,7 @@
			import org.springframework.security.crypto.bcrypt.BCryptPasswordEncoder;
			import org.springframework.security.crypto.password.PasswordEncoder;
			import org.springframework.security.web.SecurityFilterChain;
			import org.springframework.security.web.authentication.UsernamePasswordAuthenticationFilter;
			import org.springframework.web.cors.CorsConfiguration;
			import org.springframework.web.cors.CorsConfigurationSource;
			import org.springframework.web.cors.UrlBasedCorsConfigurationSource;
			@@ -24,6 +27,9 @@
			@EnableWebSecurity
			@EnableMethodSecurity
			public class SecurityConfig {

			@Autowired
			private JwtAuthenticationFilter jwtAuthenticationFilter;

			@Bean
			public PasswordEncoder passwordEncoder() {
			@@ -42,14 +48,12 @@
			.csrf(csrf -> csrf.disable())
			.sessionManagement(session -> session.sessionCreationPolicy(SessionCreationPolicy.STATELESS))
			.authorizeHttpRequests(auth -> auth
			.requestMatchers("/api/auth/**").permitAll()
			.requestMatchers("/api/graphql/**").permitAll()
			.requestMatchers("/graphql/**").permitAll()
			.requestMatchers("/graphql").permitAll()
			.requestMatchers("/api/graphiql").permitAll()
			.requestMatchers("/api/test/**").permitAll()
			.anyRequest().permitAll()
			);
			.requestMatchers("/auth/", "/actuator/", "/test/", "/cleanup/").permitAll()
			.requestMatchers("/upload/**").permitAll()
			.requestMatchers("/graphql", "/graphql/**", "/graphiql").permitAll()
			.anyRequest().authenticated()
			)
			.addFilterBefore(jwtAuthenticationFilter, UsernamePasswordAuthenticationFilter.class);

			return http.build();
			}