青阳考试系统
blame | 历史 | 补丁 | 提交 | 提交对比 | ignore whitespace
xiangpei
2024-03-08 c50e176c4a6b9331d2d1c0520bafb18f54f0dee6 
 src/main/java/com/mindskip/xzs/configuration/spring/security/SecurityConfigurer.java


@@ -79,8 +79,9 @@


                    .and().authenticationProvider(restAuthenticationProvider)


                    .authorizeRequests()


                    .antMatchers(securityIgnoreUrls.toArray(ignores)).permitAll()


                    .antMatchers("/api/admin/department/list", "/api/admin/video/getList").permitAll()


                    .antMatchers("/api/admin/**").hasRole(RoleEnum.ADMIN.getName())


                    .antMatchers("/api/admin/department/list", "/api/admin/video/getList","/api/admin/user/conversion","/api/admin/examPaperGrade/updates").permitAll()


                    // todo 设置部门管理员可以看的请求


                    .antMatchers("/api/admin/**").hasAnyRole(RoleEnum.ADMIN.getName(), RoleEnum.DEPT_ADMIN.getName())


                    .antMatchers("/api/student/**").hasRole(RoleEnum.STUDENT.getName())


                    .anyRequest().permitAll()


                    .and().exceptionHandling().accessDeniedHandler(restAccessDeniedHandler)