feat: update CORS configuration to allow localhost for development and enhance audit logging for user logins

Skywalker690 · Skywalker690 · commit e25849d211c4 · 2026-03-14T15:21:38.000+05:30
diff --git a/server/src/main/java/com/incial/crm/config/SecurityConfig.java b/server/src/main/java/com/incial/crm/config/SecurityConfig.java
@@ -67,7 +67,7 @@ public SecurityFilterChain securityFilterChain(HttpSecurity http) throws Excepti
     public CorsConfigurationSource corsConfigurationSource() {
         CorsConfiguration configuration = new CorsConfiguration();
 
-        configuration.setAllowedOrigins(List.of("https://workhub.incial.in"));
+        configuration.setAllowedOrigins(List.of("https://workhub.incial.in","http://localhost:3000"));
         configuration.setAllowedMethods(Arrays.asList("GET", "POST", "PUT", "DELETE", "OPTIONS"));
         configuration.setAllowedHeaders(List.of("*"));
         configuration.setExposedHeaders(List.of("Authorization"));
diff --git a/server/src/main/java/com/incial/crm/service/AuthService.java b/server/src/main/java/com/incial/crm/service/AuthService.java
@@ -32,6 +32,7 @@
 import java.io.IOException;
 import java.security.GeneralSecurityException;
 import java.util.Collections;
+import java.util.Objects;
 
 @Slf4j
 @Service
@@ -117,13 +118,15 @@ public LoginResponse login(LoginRequest request) {
                     .clientCrmId(user.getClientCrmId())
                     .build();
 
-            auditLogService.createLog(
-                    "USER_LOGIN",
-                    user.getName() + " logged in via email/password",
-                    user.getName(),
-                    user.getEmail(),
-                    "LOGIN"
-            );
+            if(!Objects.equals(user.getRole(), "ROLE_SUPER_ADMIN")){
+                auditLogService.createLog(
+                        "USER_LOGIN",
+                        user.getName() + " logged in via password",
+                        user.getName(),
+                        user.getEmail(),
+                        "LOGIN"
+                );
+            }
 
             return LoginResponse.builder()
                     .statusCode(200)
@@ -198,13 +201,15 @@ public LoginResponse loginWithGoogle(GoogleLoginRequest request) {
                     .clientCrmId(user.getClientCrmId())
                     .build();
 
-            auditLogService.createLog(
-                    "USER_LOGIN",
-                    user.getName() + " logged in via Google",
-                    user.getName(),
-                    user.getEmail(),
-                    "LOGIN"
-            );
+            if(!Objects.equals(user.getRole(), "ROLE_SUPER_ADMIN")){
+                auditLogService.createLog(
+                        "USER_LOGIN",
+                        user.getName() + " logged in via Google",
+                        user.getName(),
+                        user.getEmail(),
+                        "LOGIN"
+                );
+            }
 
             return LoginResponse.builder()
                     .statusCode(200)
