From 8fb4d22f55ea6bcc7dd24d53027145959575ce61 Mon Sep 17 00:00:00 2001
From: xiangpei <xiangpei@timesnew.cn>
Date: 星期四, 16 五月 2024 11:20:16 +0800
Subject: [PATCH] 在线学习基本代码
---
src/main/java/com/mindskip/xzs/configuration/spring/security/SecurityConfigurer.java | 7 +++++--
1 files changed, 5 insertions(+), 2 deletions(-)
diff --git a/src/main/java/com/mindskip/xzs/configuration/spring/security/SecurityConfigurer.java b/src/main/java/com/mindskip/xzs/configuration/spring/security/SecurityConfigurer.java
index 1cb3769..c2de944 100644
--- a/src/main/java/com/mindskip/xzs/configuration/spring/security/SecurityConfigurer.java
+++ b/src/main/java/com/mindskip/xzs/configuration/spring/security/SecurityConfigurer.java
@@ -6,6 +6,7 @@
import org.springframework.beans.factory.annotation.Autowired;
import org.springframework.context.annotation.Bean;
import org.springframework.context.annotation.Configuration;
+import org.springframework.http.HttpMethod;
import org.springframework.security.config.annotation.web.builders.HttpSecurity;
import org.springframework.security.config.annotation.web.configuration.EnableWebSecurity;
import org.springframework.security.config.annotation.web.configuration.WebSecurityConfigurerAdapter;
@@ -84,8 +85,11 @@
"/api/admin/user/conversion",
"/api/admin/examPaperGrade/updates",
"/api/admin/question/download/question/import/temp",
- "/api/admin/question/question/import"
+ "/api/admin/question/question/import",
+ "/api/upload/**"
).permitAll()
+ .antMatchers("/files/**").permitAll()
+ // 闈欐�佽祫婧愶紝鍙尶鍚嶈闂�
// todo 璁剧疆閮ㄩ棬绠$悊鍛樺彲浠ョ湅鐨勮姹�
.antMatchers("/api/admin/**").hasAnyRole(RoleEnum.ADMIN.getName(), RoleEnum.DEPT_ADMIN.getName())
.antMatchers("/api/student/**").hasRole(RoleEnum.STUDENT.getName())
@@ -97,7 +101,6 @@
.and().csrf().disable()
.cors();
}
-
/**
* Cors configuration source cors configuration source.
--
Gitblit v1.8.0