signature.git - Gitblit

			@@ -101,7 +101,7 @@
			.csrf(csrf -> csrf.disable())
			// 禁用HTTP响应标头
			.headers((headersCustomizer) -> {
			headersCustomizer.cacheControl(cache -> cache.disable()).frameOptions(options -> options.sameOrigin());
			headersCustomizer.cacheControl(cache -> cache.disable()).frameOptions(options -> options.disable());
			})
			// 认证失败处理类
			.exceptionHandling(exception -> exception.authenticationEntryPoint(unauthorizedHandler))
			@@ -111,7 +111,7 @@
			.authorizeHttpRequests((requests) -> {
			permitAllUrl.getUrls().forEach(url -> requests.antMatchers(url).permitAll());
			// 对于登录login 注册register 验证码captchaImage 允许匿名访问
			requests.antMatchers("/login", "/register", "/captchaImage").permitAll()
			requests.antMatchers("/login", "/register", "/captchaImage","/app/login").permitAll()
			// 静态资源，可匿名访问
			.antMatchers(HttpMethod.GET, "/", "/.html", "//.html", "/*/.css", "/*/.js", "/profile/**").permitAll()
			.antMatchers("/swagger-ui.html", "/swagger-resources/", "/webjars/", "//api-docs", "/druid/*").permitAll()