The permitAll matchers do not work

nydiarra / springboot-jwt

Example Springboot Application for Securing a REST API with JSON Web Token (JWT). For an example Integration with Angular (version 2+) go to https://github.com/ipassynk/angular-springboot-jwt

548 stars 331 forks source link

The permitAll matchers do not work #6

Closed ShanGor closed 7 years ago

ShanGor commented 7 years ago

For the below matchers, do not work, do you have any idea to solve that?

.antMatchers("/api-docs/", "/actuator/").permitAll()

snh-png commented 7 years ago

This issue has been fixed in the latest code. For example http://localhost:8080/health. This is because the endpoint permission must be defined in the resource server configuration instead of the main security server configuration. You can now permit all your own endpoint in the ResourceServerConfig class. Please checkout the code on Github.https://medium.com/@nydiarra/snehashish-9166bb65e012

ShanGor commented 7 years ago

Dear Snehasispanigrahi, thanks for reply, the link you've provided is not accessible, is it correct?

ShanGor commented 7 years ago

I checked the code again, saw the changes and the new code for the resource server configuration. Thanks a lot. I will try later. You are awesome!

ShanGor commented 7 years ago

Added the resource server configuration, it works perfectly! Thank you very much!