/oauth/token_key

Author: forsrc

forsrc-springboot-gwt-authorization/src/main/java/com/forsrc/boot/authorization/config/LoginConfig.java

@@ -31,13 +31,19 @@ protected void configure(HttpSecurity http) throws Exception {
                     .logoutRequestMatcher(new AntPathRequestMatcher("/logout"))
                     .logoutSuccessUrl("/login?logout")
                     .permitAll()
-                //.and()
-                    //.requestMatchers()
-                    //.antMatchers("/", "/login", "/logout", "/oauth/authorize", "/oauth/confirm_access", "/test")
                 .and()
+                    .requestMatchers()
+                    .antMatchers("/login", "/logout", "/oauth/authorize", "/oauth/confirm_access", "/test")
+                .and()
+                    .antMatcher("/**")
                     .authorizeRequests()
-                    .antMatchers("/test", "/oauth/token")
+                    .antMatchers("/oauth/token_key")
                     .permitAll()
+                 .and()
+                    .antMatcher("/**")
+                    .authorizeRequests()
+                    .anyRequest()
+                    .authenticated()
                 .and()
                     .csrf()
                     .ignoringAntMatchers("/test", "/oauth/token")