Use explicit matchers following Spring Security 6.0.5 upgrade

See gh-36293
pull/37018/head
Phillip Webb 1 year ago
parent 0233178855
commit 9d91dbc4e5

@ -66,8 +66,8 @@ public class SecurityConfiguration {
requests.requestMatchers(EndpointRequest.toAnyEndpoint().excluding(MappingsEndpoint.class))
.hasRole("ACTUATOR");
requests.requestMatchers(PathRequest.toStaticResources().atCommonLocations()).permitAll();
requests.requestMatchers("/foo").permitAll();
requests.requestMatchers(new AntPathRequestMatcher("/error")).permitAll();
requests.requestMatchers(new AntPathRequestMatcher("/foo")).permitAll();
requests.requestMatchers(new MvcRequestMatcher(handlerMappingIntrospector, "/error")).permitAll();
requests.requestMatchers(new AntPathRequestMatcher("/**")).hasRole("USER");
});
http.cors(Customizer.withDefaults());

Loading…
Cancel
Save