fix security + revert parent (#35)

Co-authored-by: ggmaleva <ggmaleva@yandex.ru>
This commit is contained in:
Gregory 2022-08-29 17:31:57 +03:00 committed by GitHub
parent 48efdc9ea6
commit ae9bd5093c
No known key found for this signature in database
GPG Key ID: 4AEE18F83AFDEB23
2 changed files with 3 additions and 2 deletions

View File

@ -6,7 +6,7 @@
<parent> <parent>
<groupId>dev.vality</groupId> <groupId>dev.vality</groupId>
<artifactId>service-parent-pom</artifactId> <artifactId>service-parent-pom</artifactId>
<version>1.0.15</version> <version>1.0.18</version>
</parent> </parent>
<artifactId>org-manager</artifactId> <artifactId>org-manager</artifactId>
@ -46,7 +46,6 @@
<dependency> <dependency>
<groupId>dev.vality</groupId> <groupId>dev.vality</groupId>
<artifactId>damsel</artifactId> <artifactId>damsel</artifactId>
<version>1.568-9362c08</version>
</dependency> </dependency>
<dependency> <dependency>
<groupId>dev.vality</groupId> <groupId>dev.vality</groupId>

View File

@ -51,6 +51,8 @@ public class SecurityConfig extends KeycloakWebSecurityConfigurerAdapter {
.authorizeRequests() .authorizeRequests()
.antMatchers(HttpMethod.OPTIONS, "/**").permitAll() .antMatchers(HttpMethod.OPTIONS, "/**").permitAll()
.antMatchers(HttpMethod.GET, "/**/health").permitAll() .antMatchers(HttpMethod.GET, "/**/health").permitAll()
.antMatchers(HttpMethod.GET, "/**/health/readiness").permitAll()
.antMatchers(HttpMethod.GET, "/**/health/liveness").permitAll()
.antMatchers("/**/auth-context").permitAll() .antMatchers("/**/auth-context").permitAll()
.antMatchers(HttpMethod.GET, "/**/prometheus").permitAll() .antMatchers(HttpMethod.GET, "/**/prometheus").permitAll()
.anyRequest().authenticated(); .anyRequest().authenticated();