~qirong/qyksxt.git

			@@ -18,12 +18,7 @@
			import java.util.List;


			/**
			* @version 3.5.0
			* @description: The type Security configurer.
			* Copyright (C), 2020-2021, 武汉思维跳跃科技有限公司
			* @date 2021/12/25 9:45
			*/

			@Configuration
			@EnableWebSecurity
			public class SecurityConfigurer {
			@@ -84,8 +79,15 @@
			.and().authenticationProvider(restAuthenticationProvider)
			.authorizeRequests()
			.antMatchers(securityIgnoreUrls.toArray(ignores)).permitAll()
			.antMatchers("/api/admin/department/list", "/api/admin/video/getList","/api/admin/exam/count/**").permitAll()
			.antMatchers("/api/admin/**").hasRole(RoleEnum.ADMIN.getName())
			.antMatchers("/api/admin/department/list",
			"/api/admin/video/getList",
			"/api/admin/user/conversion",
			"/api/admin/examPaperGrade/updates",
			"/api/admin/question/download/question/import/temp",
			"/api/admin/question/question/import"
			).permitAll()
			// todo 设置部门管理员可以看的请求
			.antMatchers("/api/admin/**").hasAnyRole(RoleEnum.ADMIN.getName(), RoleEnum.DEPT_ADMIN.getName())
			.antMatchers("/api/student/**").hasRole(RoleEnum.STUDENT.getName())
			.anyRequest().permitAll()
			.and().exceptionHandling().accessDeniedHandler(restAccessDeniedHandler)